Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Service workers are flagged by SonarCloud Scan with Issue #13150

Open
jovani-io opened this issue May 5, 2023 · 0 comments
Open

Service workers are flagged by SonarCloud Scan with Issue #13150

jovani-io opened this issue May 5, 2023 · 0 comments

Comments

@jovani-io
Copy link 

    Vulnerability suggested resolution:

Compliant Solution

When sending a message:

var iframe = document.getElementById("testsecureiframe");iframe.contentWindow.postMessage("hello", "https://secure.example.com"); // Compliant

When receiving a message:

window.addEventListener("message", function(event) {
if (event.origin !== "http://example.org") // Compliant
return;

console.log(event.data)

});

Code with Issue: service-worker.js

Lines: 20 -24

self.addEventListener('message', (event) => {

if (event.data && event.data.type === 'SKIP_WAITING') {
self.skipWaiting();
}
});
@vutting4221 vutting4221 mentioned this issue Dec 1, 2023
Open
@sirinartk sirinartk mentioned this issue Dec 1, 2023
Open
This was referenced Jan 30, 2024
Open
Open
Open
Open
Open
Open
@KeonaK-Snyk KeonaK-Snyk mentioned this issue Apr 3, 2024
Open
@raakasf raakasf mentioned this issue May 13, 2024
Open
@KeonaK-Snyk KeonaK-Snyk mentioned this issue May 14, 2024
Open
@vutting4221 vutting4221 mentioned this issue May 14, 2024
Open
This was referenced May 17, 2024
Open
Open
Open
Open
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jovani-io