Work around problem with comments in heredocs

Author: owen-mc

ruby/ql/test/query-tests/security/cwe-089/ActiveRecordInjection.rb

@@ -65,8 +65,9 @@ def some_request_handler
 
     # BAD: executes `SELECT "users".* FROM "users" WHERE id BETWEEN '#{params[:min_id]}' AND 100000`
     # where `params[:min_id]` is unsanitized
+    min_id = params[:min_id] # $ Source
     User.where(<<-SQL, MAX_USER_ID) # $ Alert
-      id BETWEEN '#{params[:min_id]}' AND ? # $ Source
+      id BETWEEN '#{min_id}' AND ?
     SQL
 
     # BAD: chained method case