-
|
Hi, Currently one can use "/?url=" parameter to 'inject' their code into swagger and potentially see confidential information such as cookies / headers that contain private keys. How can I disable / block the use of "/?url"? |
Beta Was this translation helpful? Give feedback.
Answered by
ponelat
Dec 7, 2021
Replies: 1 comment
-
|
Thanks @alegmal, heads up that #4872 will be worked on soon. |
Beta Was this translation helpful? Give feedback.
0 replies
Answer selected by
ponelat
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Thanks @alegmal, heads up that #4872 will be worked on soon.