Code
Hub
Workspaces
Connect
Indexed graphs
Engine
MCP
copy
hub
/
github.com/FlowiseAI/Flowise
/ XSS.test.ts
File
XSS.test.ts
packages/server/src/utils/XSS.test.ts:None–None ·
view source on GitHub ↗
Source
from the content-addressed store, hash-verified
1
// At the top of XSS.test.ts, before importing getAllowedIframeOrigins
2
jest.mock(
'./domainValidation'
, () => ({
3
extractChatflowId: jest.fn(),
4
isPublicChatflowRequest: jest.fn(),
Callers
nothing calls this directly
Calls
4
validateCorsConfig
Function · 0.90
getAllowedIframeOrigins
Function · 0.90
getIframeSecurityHeaders
Function · 0.90
getCredentials
Function · 0.70
Tested by
no test coverage detected