MCPcopy
hub / github.com/FlowiseAI/Flowise / XSS.test.ts

File XSS.test.ts

packages/server/src/utils/XSS.test.ts:None–None  ·  view source on GitHub ↗

Source from the content-addressed store, hash-verified

1// At the top of XSS.test.ts, before importing getAllowedIframeOrigins
2jest.mock('./domainValidation', () => ({
3 extractChatflowId: jest.fn(),
4 isPublicChatflowRequest: jest.fn(),

Callers

nothing calls this directly

Calls 4

validateCorsConfigFunction · 0.90
getAllowedIframeOriginsFunction · 0.90
getIframeSecurityHeadersFunction · 0.90
getCredentialsFunction · 0.70

Tested by

no test coverage detected