New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Incomplete multi-character sanitization on utils.js getQueryParam function 2 #446

Open

JiatangDong opened this issue Sep 6, 2024 · 2 comments

JiatangDong commented Sep 6, 2024

Happy to see the issue #443 fixed so quickly

However, the problem is not solved yet. CodeQL reports another issue "This does not escape backslash characters in the input."

Author

JiatangDong commented Sep 6, 2024 •

edited

Loading

Maybe you can consider this: https://docs.github.com/en/code-security/code-scanning/enabling-code-scanning/configuring-default-setup-for-code-scanning since the consumers like us will use it somewhere else anyway.

Member

tdumitrescu commented Sep 9, 2024

Feel free to open PRs with further fixes, thanks

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment