CX Client_Hardcoded_Domain @ template/blog.html [master]

[github-actions[bot]]

Client_Hardcoded_Domain issue exists @ template/blog.html in branch master

*The JavaScript file imported in "https://maps.googleapis.com/maps/api/js?key=AIzaSyCjCGmQ0Uq4exrzdcL6rvxywDDOvfAu6eE" in template\blog.html at line 618 is from a remote domain, which may allow attackers to replace its contents with malicious code.Similarity ID: -301304178

The JavaScript file imported in "https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.11.0/umd/popper.min.js" in template\blog.html at line 608 is from a remote domain, which may allow attackers to replace its contents with malicious code.Similarity ID: 331968494*

Severity: Low

CWE:829

Vulnerability details and guidance

Internal Guidance

Checkmarx

Training Recommended Fix

Lines: 608 618

---

Code (Line #608):

<script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.11.0/umd/popper.min.js" integrity="sha384-b/U6ypiBEHpOf/4+1nzFpr53nxSS+GLCkfwBdFNTxtclqqenISfwAzpKaMNFNmj4"

---

Code (Line #618):

<script src="https://maps.googleapis.com/maps/api/js?key=AIzaSyCjCGmQ0Uq4exrzdcL6rvxywDDOvfAu6eE"></script>

---

[github-actions[bot]]

Issue still exists.