Description of problem:

jinja2.Template is called with no autoescape argument (autoescaping is disabled by default). This increases the risk of Cross-Site Scripting (XSS) attacks.

Prerequisites (if any, like setup, operators/versions):

Steps to Reproduce

1. snyk code test

Actual results:

> snyk code test                                                                                                                                                                       main

Testing /Users/cdaley/Code/github.com/redhat-developer/rhdh-chart ...

✗ [Medium] Jinja auto-escape is set to false.

   Path: .pre-commit/jsonschema-dereference.py, line 26

   Info: jinja2.Template is called with no autoescape argument (autoescaping is disabled by default). This increases the risk of Cross-Site Scripting (XSS) attacks.

✔ Test completed

Organization:      developer-red-hat-developer-hub

Test type:         Static code analysis

Project path:      /Users/cdaley/Code/github.com/redhat-developer/rhdh-chart

Summary:

  1 Code issues found

  1 [Medium]

Expected results:

> snyk code test                                                                                                                                                                       main

Testing /Users/cdaley/Code/github.com/redhat-developer/rhdh-chart ...

✔ Test completed

Organization:      developer-red-hat-developer-hub

Test type:         Static code analysis

Project path:      /Users/cdaley/Code/github.com/redhat-developer/rhdh-chart

Summary:

✔ Awesome! No issues were found.

Reproducibility (Always/Intermittent/Only Once):

Always

Build Details:

Additional info (Such as Logs, Screenshots, etc):