content-build icon indicating copy to clipboard operation
content-build copied to clipboard

Published 20 hours ago verified publisher icon department-of-veterans-affairs

Dependabot: Address URL & regex sanitization.

Open timcosgrove opened this issue 9 months ago • 0 comments

Summary

Addresses a collection of Dependabot refactor requests https://github.com/department-of-veterans-affairs/content-build/security/code-scanning/34 https://github.com/department-of-veterans-affairs/content-build/security/code-scanning/35 https://github.com/department-of-veterans-affairs/content-build/security/code-scanning/36 Link here for an explanation of these: https://github.com/department-of-veterans-affairs/content-build/security/code-scanning/34#:~:text=Constructing%20a%20regular,CWE%2D400.

https://github.com/department-of-veterans-affairs/content-build/security/code-scanning/2 https://github.com/department-of-veterans-affairs/content-build/security/code-scanning/9 https://github.com/department-of-veterans-affairs/content-build/security/code-scanning/10 Link here for an explanation of these: https://github.com/department-of-veterans-affairs/content-build/security/code-scanning/10#:~:text=Sanitizing%20untrusted%20URLs,CWE%2D20.

This should not be merged without being deployed to a testing environment; working on that.

timcosgrove avatar Apr 29 '24 21:04 timcosgrove