You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Right now, the CRUD API just takes form definitions and form data and forwards them to persistence providers to save them.
We have a request to sanitize specifically form definitions, to help prevent injections. One question was whether this is needed or useful, or whether #6533 covers sufficient ground.
It would be good to be able to validate form definitions upon PUT, as a general option. HTML sanitation could be part of that.
The text was updated successfully, but these errors were encountered:
Right now, the CRUD API just takes form definitions and form data and forwards them to persistence providers to save them.
We have a request to sanitize specifically form definitions, to help prevent injections. One question was whether this is needed or useful, or whether #6533 covers sufficient ground.
It would be good to be able to validate form definitions upon
PUT, as a general option. HTML sanitation could be part of that.The text was updated successfully, but these errors were encountered: