The web interface for the PDS DOI Service providing the ability management PDS archive DOIs. See the DOI Service for more details on the available capabilities. https://nasa-pds.github.io/doi-service/
The first 4 items have to do with xml parsing. The xml being parsed comes directly from the doi service. Anything that has passed the upload process will be saved. We need to check if someone can inject some scripts in the xml and upload it. If it gets through then it can be sent back to the UI. We can create one ticket for these 4.
Fix the items that were found by the code scanning. https://github.com/NASA-PDS/doi-ui/security/code-scanning
The first 4 items have to do with xml parsing. The xml being parsed comes directly from the doi service. Anything that has passed the upload process will be saved. We need to check if someone can inject some scripts in the xml and upload it. If it gets through then it can be sent back to the UI. We can create one ticket for these 4.
The last one is to add noopener to a link tag.
The full descriptions of these are at #137