Skip to content

test(deno): fix incomplete URL substring sanitization#506

Merged
sigmaSd merged 1 commit intoflatpak:masterfrom
ReenigneArcher:test/deno/fix-URL-sanitization
Feb 23, 2026
Merged

test(deno): fix incomplete URL substring sanitization#506
sigmaSd merged 1 commit intoflatpak:masterfrom
ReenigneArcher:test/deno/fix-URL-sanitization

Conversation

@ReenigneArcher
Copy link
Copy Markdown
Contributor

@ReenigneArcher ReenigneArcher commented Feb 8, 2026
edited
Loading

This PR fixes two "security" issues detected by CodeQL in the deno tests. Since they are in tests, it's probably not a big deal.

image

The fix ensures the strings/urls actually start with the intended strings, instead of only containing them.

@github-actions github-actions Bot added the deno label Feb 8, 2026
@ReenigneArcher
Copy link
Copy Markdown
Contributor Author

ReenigneArcher commented Feb 23, 2026

@sigmaSd Could you please review?

@sigmaSd
Copy link
Copy Markdown
Collaborator

sigmaSd commented Feb 23, 2026

Where do you get these warnings from, is codeql thing something you run manually on this repo ?

@ReenigneArcher
Copy link
Copy Markdown
Contributor Author

ReenigneArcher commented Feb 23, 2026

Where do you get these warnings from, is codeql thing something you run manually on this repo ?

This repo is a submodule in my project and submodules are also scanned.

@sigmaSd sigmaSd merged commit 4d5e760 into flatpak:master Feb 23, 2026
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sigmaSd sigmaSd sigmaSd approved these changes

Assignees

No one assigned

Labels

deno

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ReenigneArcher @sigmaSd