Skip to content

Potential fix for code scanning alert no. 141: Full server-side request forgery#8093

Open
grantfitzsimmons wants to merge 4 commits into
mainfrom
alert-autofix-141
Open

Potential fix for code scanning alert no. 141: Full server-side request forgery#8093
grantfitzsimmons wants to merge 4 commits into
mainfrom
alert-autofix-141

Merge branch 'main' into alert-autofix-141

837970e
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed May 20, 2026 in 2s

1 new alert including 1 critical severity security vulnerability

New alerts in code changed by this pull request

Security Alerts:

  • 1 critical

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 135 in specifyweb/backend/trees/default_tree_files.py

See this annotation in the file changed.

Code scanning / CodeQL

Full server-side request forgery Critical

The full URL of this request depends on a
user-provided value
.
The full URL of this request depends on a
user-provided value
.