5b0d30986d
- Apply URL validation using security.ValidateWebhookURL() to all webhook HTTP request paths in notification_service.go - Block private IPs (RFC 1918), cloud metadata endpoints, and loopback - Add comprehensive SSRF test coverage - Improve handler test coverage from 84.2% to 85.4% - Add CodeQL VS Code tasks for local security scanning - Update Definition of Done to include CodeQL scans - Clean up stale SARIF files from repo root Resolves CI CodeQL gate failure for CWE-918.
2 lines
8 B
Plaintext
2 lines
8 B
Plaintext
v0.14.1
|