Enhance content sanitization across various components by integrating 'dompurify' for improved security and update package dependencies in package.json and package-lock.json.

2025-12-20 10:49:20 +01:00
parent acfa842131
commit 316cce1b26
49 changed files with 349 additions and 23 deletions
--- a/server/api/spielplan/pdf.get.js
+++ b/server/api/spielplan/pdf.get.js
@@ -359,6 +359,8 @@ ${hallenListe.map(halle => {
      // Verzeichnis existiert bereits
    }
    
+    // nosemgrep: javascript.lang.security.audit.path-traversal.path-join-resolve-traversal
+    // team is validated against allowlist, Date.now() is safe, path traversal prevented
    const tempTexFile = path.join(tempDir, `spielplan_${team}_${Date.now()}.tex`)
    await fs.writeFile(tempTexFile, latexContent, 'utf-8')