From 1369939185378ba3c84dab9093e1e80bc6e85cd7 Mon Sep 17 00:00:00 2001
From: Marguerite Martinez <marguerite_murrell@rapid7.com>
Date: Thu, 27 Jun 2024 15:03:47 -0400
Subject: [PATCH] Sanitize URI inputs for SSRF vuln

---
 src/main/protocol.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/main/protocol.js b/src/main/protocol.js
index 47819c0..6534eed 100644
--- a/src/main/protocol.js
+++ b/src/main/protocol.js
@@ -44,7 +44,7 @@ function registerHandlers() {
 
     let data;
     try {
-      data = await refreshJit(profile);
+      data = await refreshJit(encodeURI(profile));
     } catch (err) {
       const errBody = JSON.stringify({
         error_message: err?.message || 'unknown',