Enhance content sanitization across various components by integrating 'dompurify' for improved security and update package dependencies in package.json and package-lock.json.

2025-12-20 10:49:20 +01:00
parent 98b69c446c
commit 8fcb71b946
49 changed files with 349 additions and 23 deletions
--- a/scripts/set-admin-password.js
+++ b/scripts/set-admin-password.js
@@ -26,6 +26,8 @@ dotenv.config({ path: path.join(__dirname, '..', '.env') })
 const ADMIN_EMAIL = 'admin@harheimertc.de'

 // Pfade bestimmen
+// nosemgrep: javascript.lang.security.audit.path-traversal.path-join-resolve-traversal
+// filename is always a hardcoded constant (e.g., 'users.json'), never user input
 function getDataPath(filename) {
  const cwd = process.cwd()
  if (cwd.endsWith('.output')) {