Audit request argument parsing

WordPress / openverse

Openverse is a search engine for openly-licensed media. This monorepo includes all application code.

https://openverse.org

MIT License

243 stars 194 forks source link

Audit request argument parsing #741

Open AetherUnbound opened 2 years ago

AetherUnbound commented 2 years ago

Description

It came about while discussing WordPress/openverse-api#398 that we should do an audit of all request argument processing (e.g. request.query_params usage) to make sure that we don't have other possible points of failure where users (or the frontend!) might submit inappropriate values.

Alternatives

Additional context

Implementation

[ ] 🙋 I would be interested in implementing this feature.

Vidush22 commented 2 years ago

@AetherUnbound , I want to work on this matter. Kindly consider my request.

dhruvkb commented 2 years ago

@Vidush22 sure, go ahead. Feel free to ping here on post in the #openverse channel in the Making WordPress Slack workspace if you need any help.

tammytdo commented 1 year ago

Hi, I'd like to work on this. @sarayourfriend