2
0
mirror of https://github.com/inventree/InvenTree.git synced 2026-07-05 06:32:55 +00:00

Improve security posture of PDF reporting (#12160)

* Add custom URL fetcher for PDF rendering

* Fix for report helper functions

* Use new fetcher

* Additional unit tests

* Add new setting to control remote URL fetching

* validate URLs against SSRF

* Add global setting to disable URL fetching entirely

* Update docs

* Fix capitalization

* Fix logging backend

* Update CHANGELOG
This commit is contained in:
Oliver
2026-06-14 10:55:51 +10:00
committed by GitHub
parent b294bba66b
commit 2b4f303770
12 changed files with 327 additions and 7 deletions
@@ -199,6 +199,7 @@ export default function SystemSettings() {
'REPORT_ENABLE',
'REPORT_DEFAULT_PAGE_SIZE',
'REPORT_DEBUG_MODE',
'REPORT_FETCH_URLS',
'REPORT_LOG_ERRORS',
'LABEL_ENABLE',
'LABEL_DPI'