Skip to content

Commit

Permalink
Fix
Browse files Browse the repository at this point in the history
  • Loading branch information
@benoit74
benoit74 committed Oct 18, 2024
1 parent c1f4ad7 commit ca31d4a
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion rules/generate_rules.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@

# Do not escape anything, we want to generate code as-is, it won't be interpreted as
# HTML anyway
JINJA_ENV = Environment(autoescape=False) # noqa: S701
JINJA_ENV = Environment(autoescape=False) # noqa: S701, B701, RUF100

Check failure on line 32 in rules/generate_rules.py

View check run for this annotation

codefactor.io / CodeFactor

rules/generate_rules.py#L32 

Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True or use the select_autoescape function to mitigate XSS vulnerabilities. (B701)

### Generate Javascript code

Expand Down

0 comments on commit ca31d4a

Please sign in to comment.