Returns locations in files and counts of string instances found.
Scans source code packages for potential javascript vulnerabilities listed as strings or regular expressions.