EPMOSDU-1401-sast fix (!652) · Merge requests · OSDU / OSDU Data Platform / Security and Compliance / Legal

Description

Checkmarx complains that untrusted data is embedded into the output without proper sanitization or encoding,
enabling an attacker to inject malicious code into the generated web-page.

Piece of spotted code:

Original message from Checkmarx:

What is the current behavior?

No sanitization is provided for untrusted data.

What is the new behavior?

Sanitization is provided for untrusted data.

Does this introduce a breaking change?

Edited Mar 06, 2025 by Vladimir Korolevskii (EPAM)

EPMOSDU-1401-sast fix

Description

What is the current behavior?

What is the new behavior?

Does this introduce a breaking change?

Merge request reports