SecLists/Pattern-Matching/dangerous-functions-angular.txt

# Angular pipes
bypassSecurityTrustHtml
bypassSecurityTrustScript
bypassSecurityTrustStyle
bypassSecurityTrustUrl
bypassSecurityTrustResourceUrl

# Angular inputs
[innerHTML] //Insert given HTML without escaping dangerous characters

# angular.js (aka Angular 1)
trustAsHtml
$eval
$evalAsync