vulnerability reported on *.js.map and *.css.map files

[konvergence]

vulnerability reported on .js.map and .css.map files

Description

Our vulnerability scanner reports vulnerabilities in .js.map and .css.map files. Even on the latest version 1.51.2

fusionauth@fusionauth-webapp-78f5b7d89d-lsz4w:/$ cd /usr/local/fusionauth/
fusionauth@fusionauth-webapp-78f5b7d89d-lsz4w:~$ find . -name "*.map"
./fusionauth-app/web/static/css/fusionauth-style.css.map
./fusionauth-app/web/static/css/theme-editor.css.map
./fusionauth-app/web/static/css/theme-thumbnail.css.map
./fusionauth-app/web/static/css/openlayers-6.6.0.css.map
./fusionauth-app/web/static/css/simple-theme.css.map
./fusionauth-app/web/static/js/openlayers-6.6.0.js.map
./fusionauth-app/web/static/js/prime-min-1.6.1.js.map
./fusionauth-app/web/static/js/prime-min-1.7.0.js.map
./fusionauth-app/web/static/js/prime-min-1.5.3.js.map
./fusionauth-app/web/static/js/prime-min-1.6.4.js.map
./fusionauth-app/web/static/js/prime-min-1.4.1.js.map
./fusionauth-app/web/css/static/fusionauth-style.css.map

Request

is is possible to remove debug map files ?

[jobannon]

@konvergence Thanks for the information. This pages outlines our procedure for reporting vulnerabilities for triage and review. Thanks! https://fusionauth.io/security

[konvergence]

The submitted vulnerability Bugcrowd is 9e94c2e1fe7212e178db653b24955ddd8778e0d0332aabad7df9a5d0a698f11c

[robotdan]

Thanks for letting us know. This will be handled via BugCrowd if there is something we need to change.