Skip to content

CalmHub: Sanitize rendered content to prevent XSS attacksΒ #761

New issue
New issue
Open
Open
CalmHub: Sanitize rendered content to prevent XSS attacks#761
Assignees
grahampacker-ms
Labels
calm-hubThe Calm Hub Product
@grahampacker-ms

Description

@grahampacker-ms
grahampacker-ms
opened on Jan 3, 2025

Feature Request

Description of Problem:

As we will be rendering content on a web app, we need to consider the sanitisation of the content we are displaying.
Embedded HTML elements within an ADR, Pattern or Architecture could become an attack vector for XSS attacks.

Potential Solutions

  • Sanitize HTML elements before storage in CalmHub
  • Sanitize HTML elements on GET operation in CalmHub
  • Sanitize HTML elements in the CalmHub UI

Activity

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

Labels

calm-hubThe Calm Hub Product

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions