From 60937e7b2a73dabf1ab514a95f4c5279cdb7ac76 Mon Sep 17 00:00:00 2001 From: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> Date: Thu, 9 Jan 2025 17:18:14 +0530 Subject: [PATCH] security hotspot fix Signed-off-by: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> --- .../download-card/download-card.component.ts | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) diff --git a/admin-ui/src/app/features/download-card/download-card/download-card.component.ts b/admin-ui/src/app/features/download-card/download-card/download-card.component.ts index 4b9c4377..def35982 100644 --- a/admin-ui/src/app/features/download-card/download-card/download-card.component.ts +++ b/admin-ui/src/app/features/download-card/download-card/download-card.component.ts @@ -1,11 +1,10 @@ -import { Component, OnInit } from '@angular/core'; +import { Component, OnInit, Sanitizer, SecurityContext } from '@angular/core'; import { TranslateService } from '@ngx-translate/core'; import { AppConfigService } from 'src/app/app-config.service'; import { AuditService } from 'src/app/core/services/audit.service'; import { DataStorageService } from 'src/app/core/services/data-storage.service'; import { MatDialog } from '@angular/material/dialog'; import { DialogComponent } from 'src/app/shared/dialog/dialog.component'; -import { DomSanitizer } from '@angular/platform-browser'; import { saveAs } from 'file-saver'; import { ActivatedRoute, Router, NavigationEnd } from '@angular/router'; import { HttpErrorResponse } from '@angular/common/http'; @@ -38,7 +37,7 @@ export class DownloadCardComponent implements OnInit { private activatedRoute: ActivatedRoute, private dataStorageService: DataStorageService, public dialog: MatDialog, - private sanitizer:DomSanitizer, + private sanitizer: Sanitizer, private router: Router ) { translate.use(appService.getConfig().primaryLangCode); @@ -81,8 +80,7 @@ export class DownloadCardComponent implements OnInit { } renderImage(){ - const trustedUrl = this.sanitizer.bypassSecurityTrustResourceUrl(this.data.applicantPhoto); - this.applicantPhoto = trustedUrl; + this.applicantPhoto = this.sanitizer.sanitize(SecurityContext.URL, this.data.applicantPhoto); } search() {