Sanitizing values in incident reports

You can configure the system to sanitize field values that start with particular characters in an incident report exported to Excel.

About this task

For new 1.11 installations, the reports.character_blocklist_enabled variable is set to true and enabled by default.

If you upgraded to 1.11, you can configure the reports.character_blocklist_enabled variable to control if values in incident reports are sanitized. When you set the reports.character_blocklist_enabled variable to true, if there are any of the following values at the start of a field in an incident, these fields are sanitized in line with industry-standard recommendations to mitigate against vulnerabilities when they are exported in an incident report:
  • The @ symbol: @
  • The + symbol: +
  • The - symbol: -
  • The = symbol: =
  • A keyboard TAB
  • A carriage return
If the reports.character_blocklist_enabled value is set to false, there are no changes to the field values when an incident report is exported to Excel.

Procedure

  1. To configure the system to sanitize values in incident reports, set the reports.character_blocklist_enabled variable using the following command: 
    oc exec -ti $(oc get pod -l name=isc-cases-application -o name) -c cases-application -- resutil configset -key reports.character_blocklist_enabled -bvalue true
  2. To disable, enter the following command: 
    oc exec -ti $(oc get pod -l name=isc-cases-application -o name) -c cases-application -- resutil configset -key reports.character_blocklist_enabled -bvalue false