Holds if (arg, par, ret, out) forms a subpath-tuple, that is, flow through
a subpath between par and ret with the connecting edges arg -> par and
ret -> out is summarized as the edge arg -> out.
Import path
import semmle.code.csharp.security.dataflow.XSSQuery