Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Whitelist file types in file upload #7044

Merged
merged 7 commits into from
Jan 17, 2024
Merged

Whitelist file types in file upload #7044

merged 7 commits into from
Jan 17, 2024

Conversation

khavinshankar
Copy link
Member

Proposed Changes

  • wrt Beagel security audit report

Depends on ohcnetwork/care#1824

@coronasafe/care-fe-code-reviewers @coronasafe/code-reviewers

Merge Checklist

  • Add specs that demonstrate bug / test a new feature.
  • Update product documentation.
  • Ensure that UI text is kept in I18n files.
  • Prep screenshot or demo video for changelog entry, and attach it to issue.
  • Request for Peer Reviews
  • Completion of QA

@khavinshankar khavinshankar added needs testing P1 breaking issue or vital feature waiting for backend labels Jan 16, 2024
@khavinshankar khavinshankar requested a review from a team as a code owner January 16, 2024 11:41
@netlify Netlify
Copy link

netlify bot commented Jan 16, 2024
edited
Loading

Deploy Preview for care-egov-staging ready!

Name Link
🔨 Latest commit a788f85
🔍 Latest deploy log https://app.netlify.com/sites/care-egov-staging/deploys/65a805b6315725000810b66c
😎 Deploy Preview https://deploy-preview-7044--care-egov-staging.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@vercel Vercel
Copy link

vercel bot commented Jan 16, 2024
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
care-storybook ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 17, 2024 4:52pm

@khavinshankar
Copy link
Member Author

@aparnacoronasafe In this PR, we have added a whitelist for file types (images, pdfs), other files can't be uploaded. This is done with respect to the Beagel security audit report. Are there any other file types that are used in the field?

@cypress Cypress
Copy link

cypress bot commented Jan 16, 2024
edited
Loading

Passing run #1897 ↗︎

0 98 0 0 Flakiness 0

Details:

Whitelist file types in file upload
Project: CARE Commit: ec4df21ad3
Status: Passed Duration: 02:28 💡
Started: Jan 17, 2024 12:07 PM Ended: Jan 17, 2024 12:09 PM

Review all test suite changes for PR #7044 ↗︎

@nihal467
Copy link
Member

@khavinshankar mark it for testing once the backend is ready

@rithviknishad rithviknishad requested a review from Ashesh3 January 17, 2024 10:29
@nihal467
Copy link
Member

LGTM

@nihal467 nihal467 added tested reviewed reviewed by a core member and removed needs testing labels Jan 17, 2024
@gigincg gigincg merged commit 218af3e into develop Jan 17, 2024
23 of 26 checks passed
@gigincg gigincg deleted the fileupload-whitelist branch January 17, 2024 16:53
@github-actions GitHub Actions
Copy link

@khavinshankar We truly appreciate your efforts. Thank you for taking the time to contribute; this is a very valuable contribution to us 🥇. We always welcome your contribution 🙂, so feel free to contribute to anything anytime, and never lose that spirit of innovation 🙌.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rithviknishad rithviknishad rithviknishad approved these changes

@gigincg gigincg gigincg approved these changes

@Ashesh3 Ashesh3 Ashesh3 approved these changes

Assignees
No one assigned
Labels
P1 breaking issue or vital feature reviewed reviewed by a core member tested
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@khavinshankar @nihal467 @Ashesh3 @gigincg @rithviknishad