fix(templates): potential DOM XSS

dwisiswant0 · coderabbitai[bot] · web-flow · commit f31e96356002 · 2024-12-13T15:21:44.000+07:00
Co-authored-by: coderabbitai[bot] &lt;136622811+coderabbitai[bot]@users.noreply.github.com&gt;
diff --git a/internal/server/templates/index.html b/internal/server/templates/index.html
@@ -333,7 +333,9 @@
         });
 
         function toggleJSON() {
-            window.location.href = window.location.href + '.json';
+            const url = new URL(window.location.href);
+            url.pathname = url.pathname + '.json';
+            window.location.href = url.toString();
         }
     </script>
 </body>
