🚥💧 ↝ [SSG-69 SSG-64 SSG-78]: New Community Missions, Beginning #Chapter-2 flow #165
Conversation
…failing...about half
…ality that isn't being utilised
… mining handling now included.
…(just not in next, which is kind of the point)
… mission list with increased relevance is in the final stages️
…g missions/achievements
…ining ops for this sprint, preparing for the follow up with the new C2
|
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
|
|
||
| // Draw the image onto the canvas | ||
| const img = new Image(); | ||
| img.src = imageUrl; |
Check warning
Code scanning / CodeQL
DOM text reinterpreted as HTML Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix AI 3 months ago
To fix the problem, we need to ensure that the imageUrl is properly sanitized before being used. Since URL.createObjectURL(file) is generally safe, we can add a check to ensure that the file type is an image before creating the URL. This will prevent non-image files from being used, which could potentially contain malicious content.
- Add a check to ensure the uploaded file is an image.
- Only create the object URL if the file type is an image.
| @@ -20,3 +20,3 @@ | ||
| const file = event.target.files?.[0]; | ||
| if (file) { | ||
| if (file && file.type.startsWith('image/')) { | ||
| const url = URL.createObjectURL(file); |
Broad goal - users can travel again ✅, and there's a clear mission group across expeditions and exoplanet colonisation ⏳ (planned). Clear mission goals for each pathway and structure on different location types ⏳. Increased collaboration, communication, item sharing, consensus & surveyor (introduction through missions) and post cards, sharing to posts table (new) and external networks. New design for StarnetLayout
Huly®: STAR_-150