jsinovassin opened a new pull request, #701: URL: https://github.com/apache/unomi/pull/701
Fixes [https://github.com/apache/unomi/security/code-scanning/11](https://github.com/apache/unomi/security/code-scanning/11) To fix the problem, we need to replace the use of `Math.random()` with a cryptographically secure random number generator. In the browser environment, `crypto.getRandomValues` is the recommended method. This function generates cryptographically secure random values, which can be used to replace the insecure `Math.random()`. - Replace the `Math.random()` call with `crypto.getRandomValues`. - Ensure the generated random values are used correctly to maintain the UUID format. - Update the `generateUUID` function in the `samples/tweet-button-plugin/src/main/webapp/index.html` file. _Suggested fixes powered by Copilot Autofix. Review carefully before merging._ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@unomi.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
