Mirrors/opencti
1
0
Fork 0
mirror of https://github.com/OpenCTI-Platform/opencti.git synced 2025-12-22 08:17:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

[docs] Remove restricted ejs functions (#395)

Browse Source
This commit is contained in:
Archidoit
2025-12-12 23:14:35 +01:00
committed by GitHub
parent 6154365b73
commit 2232b84b2f
1 changed files with 1 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
docs/docs/administration/tips-to-create-a-custom-notifier.md
View File

@@ -287,26 +287,7 @@ Labels:
2. Avoid heavy computation in templates.
3. Escape output if sending to HTML/Email to avoid injection issues.
# Additional information
## Restricted EJS functions
OpenCTI restricts the use of certain EJS functions within notifier templates to enhance security. By default, only the following functions are permitted:
- `if`
- `for`
- `forEach`
- `while`
- `stringify`
- `Date`
- `toLocaleString`
- `isArray`
- `keys`
- `function`
If you require additional functions, they can be enabled by configuring the `APP__NOTIFIER_AUTHORIZED_FUNCTIONS` parameter in your OpenCTI platform settings. Please refer to the OpenCTI configuration documentation: https://docs.opencti.io/latest/deployment/configuration/#network-and-security
## External resources
# External resources
To go further, please explore the following resources: