Security: Fix DoS risks, patch XXE vulnerability, and add security he… #7222

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open

walle5eva wants to merge 2 commits into hotosm:develop from walle5eva:develop

+48 −15

Open

Security: Fix DoS risks, patch XXE vulnerability, and add security he… #7222

[pre-commit.ci] auto fixes from pre-commit.com hooks

SonarQubeCloud / SonarCloud Code Analysis failed Apr 13, 2026 in 1m 11s

Quality Gate failed

Failed conditions
B Maintainability Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

Annotations

Check warning on line 98 in frontend/src/components/header/signUp.js

sonarqubecloud / SonarCloud Code Analysis

Simplify this regular expression to reduce its complexity from 37 to the 20 allowed.

See more on https://sonarcloud.io/project/issues?id=hotosm_tasking-manager&issues=AZ2IFCZpFRSfrDraCvvm&open=AZ2IFCZpFRSfrDraCvvm&pullRequest=7222

Check warning on line 91 in frontend/src/components/header/signUp.js

sonarqubecloud / SonarCloud Code Analysis

'data.email.length' is missing in props validation

See more on https://sonarcloud.io/project/issues?id=hotosm_tasking-manager&issues=AZ2IFCZpFRSfrDraCvvl&open=AZ2IFCZpFRSfrDraCvvl&pullRequest=7222

Check warning on line 98 in frontend/src/components/header/signUp.js

sonarqubecloud / SonarCloud Code Analysis

Use concise character class syntax '\d' instead of '[0-9]'.

See more on https://sonarcloud.io/project/issues?id=hotosm_tasking-manager&issues=AZ2IFCZpFRSfrDraCvvp&open=AZ2IFCZpFRSfrDraCvvp&pullRequest=7222

Check warning on line 98 in frontend/src/components/header/signUp.js

sonarqubecloud / SonarCloud Code Analysis

Use concise character class syntax '\d' instead of '[0-9]'.

See more on https://sonarcloud.io/project/issues?id=hotosm_tasking-manager&issues=AZ2IFCZpFRSfrDraCvvn&open=AZ2IFCZpFRSfrDraCvvn&pullRequest=7222

Check warning on line 91 in frontend/src/components/header/signUp.js

sonarqubecloud / SonarCloud Code Analysis

'data.email' is missing in props validation

See more on https://sonarcloud.io/project/issues?id=hotosm_tasking-manager&issues=AZ2IFCZpFRSfrDraCvvk&open=AZ2IFCZpFRSfrDraCvvk&pullRequest=7222

Check warning on line 98 in frontend/src/components/header/signUp.js

sonarqubecloud / SonarCloud Code Analysis

Use concise character class syntax '\d' instead of '[0-9]'.

See more on https://sonarcloud.io/project/issues?id=hotosm_tasking-manager&issues=AZ2IFCZpFRSfrDraCvvo&open=AZ2IFCZpFRSfrDraCvvo&pullRequest=7222

Check warning on line 98 in frontend/src/components/header/signUp.js

sonarqubecloud / SonarCloud Code Analysis

Use concise character class syntax '\d' instead of '[0-9]'.

See more on https://sonarcloud.io/project/issues?id=hotosm_tasking-manager&issues=AZ2IFCZpFRSfrDraCvvq&open=AZ2IFCZpFRSfrDraCvvq&pullRequest=7222

View more details on SonarQubeCloud

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Security: Fix DoS risks, patch XXE vulnerability, and add security he… #7222

Uh oh!

Security: Fix DoS risks, patch XXE vulnerability, and add security he… #7222

Uh oh!

Quality Gate failed

Annotations

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

Re-running checks...

Uh oh!

Security: Fix DoS risks, patch XXE vulnerability, and add security he… #7222

Are you sure you want to change the base?

[pre-commit.ci] auto fixes from pre-commit.com hooks

Uh oh!

Security: Fix DoS risks, patch XXE vulnerability, and add security he… #7222

Uh oh!

Quality Gate failed

Annotations

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

sonarqubecloud / SonarCloud Code Analysis

Re-running checks...