Update swagger (Fix XSS in swagger-ui)

GHSA-3244-8mff-w398 https://www.vidocsecurity.com/blog/hacking-swagger-ui-from-xss-to-account-takeovers/
2023-01-10 18:21:38 +01:00 · 2023-01-10 18:21:38 +01:00 · 501aa95347
parent 056cd5ecb7
commit 501aa95347
1 changed files with 2 additions and 2 deletions
--- a/docs/ui.go
+++ b/docs/ui.go
@ -36,8 +36,8 @@ var ui = `
  <body>
    <div id="swagger-ui"></div>

-    <script src="https://cdnjs.cloudflare.com/ajax/libs/swagger-ui/3.20.5/swagger-ui-bundle.js"> </script>
-    <script src="https://cdnjs.cloudflare.com/ajax/libs/swagger-ui/3.20.5/swagger-ui-standalone-preset.js"> </script>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/swagger-ui/4.15.5/swagger-ui-bundle.js"> </script>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/swagger-ui/4.15.5/swagger-ui-standalone-preset.js"> </script>
    <script>
    function getBaseURL() {
      var path = window.location.pathname