Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Use AntiSSRF library #4848

Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open

Use AntiSSRF library #4848

wants to merge 4 commits into from
+334 −1

Conversation

rbans96
Copy link
Contributor

@rbans96 rbans96 commented Feb 28, 2025
edited
Loading

Description

This PR uses AntiSSRF library to protect against Server Side Request Forgery (SSRF) attacks. This is the required guidance from one of the SDL task.

Related issues

Addresses workitem

Testing

Added unit tests

FHIR Team Checklist

  • Update the title of the PR to be succinct and less than 65 characters
  • Add a milestone to the PR for the sprint that it is merged (i.e. add S47)
  • Tag the PR with the type of update: Bug, Build, Dependencies, Enhancement, New-Feature or Documentation
  • Tag the PR with Open source, Azure API for FHIR (CosmosDB or common code) or Azure Healthcare APIs (SQL or common code) to specify where this change is intended to be released.
  • Tag the PR with Schema Version backward compatible or Schema Version backward incompatible or Schema Version unchanged if this adds or updates Sql script which is/is not backward compatible with the code.
  • When changing or adding behavior, if your code modifies the system design or changes design assumptions, please create and include an ADR.
  • CI is green before merge Build Status
  • Review squash-merge requirements

Semver Change (docs)

Patch|Skip|Feature|Breaking (reason)

@rbans96 rbans96 requested a review from a team as a code owner February 28, 2025 20:09
@rbans96 rbans96 changed the title Personal/ribans/use antissrf Use AntiSSRF library Feb 28, 2025
@rbans96 rbans96 added this to the 2Wk11 milestone Feb 28, 2025
@rbans96 rbans96 added Area-AKS Area related to Kubernetes Azure API for FHIR Label denotes that the issue or PR is relevant to the Azure API for FHIR Azure Healthcare APIs Label denotes that the issue or PR is relevant to the FHIR service in the Azure Healthcare APIs labels Feb 28, 2025
@rbans96 rbans96 added the Bug-Security Security related bugs. label Feb 28, 2025
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Area-AKS Area related to Kubernetes Azure API for FHIR Label denotes that the issue or PR is relevant to the Azure API for FHIR Azure Healthcare APIs Label denotes that the issue or PR is relevant to the FHIR service in the Azure Healthcare APIs Bug-Security Security related bugs.
Projects
None yet
Milestone
2Wk11
Development

Successfully merging this pull request may close these issues.
1 participant
@rbans96