As a user, I want an external git submodule link to not send referer url as it may pose a information leak.

XMLWordPrintable

    • Type: Suggestion
    • Resolution: Unresolved
    • None
    • Component/s: Security - Other
    • None
    • 6
    • 5

      When an external library or repo is added, committed and pushed to a Stash/Bitbucket Server repo as a submodule, the link within the Stash/Bitbucket Server Web GUI takes the visitor to the external location. This means that the referer (referrer) url (Stash/Bitbucket Server) is sent to the external server and is logged. This is poses as a data/information leak.

              Assignee:
              Unassigned
              Reporter:
              Nate Hansberry (Inactive)
              Votes:
              2 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated: