Updating javascript ssrf wkhtmltoimage rule and tests
What does this MR do?
- Changes rule patterns to use taint mode and add sanitizer pattern
- Updates message to add better description, mitigation and secure code example
- Updates metadata
- Updates Test cases
What are the relevant issue numbers?
Addresses issue: Enhance sast-rules lgpl\javascript\ssrf\rule-wk... (gitlab-org/gitlab#440632 - closed) • Bhavya Kaushal
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer
Edited by Adam Cohen