> ## Documentation Index
> Fetch the complete documentation index at: https://docs.codeant.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Security

<AccordionGroup>
  <Accordion title="apollo-axios-ssrf">
    User-controllable argument $DATAVAL to $METHOD passed to Axios via internal handler \$INNERFUNC. This could be a server-side request forgery. A user could call a restricted API or leak internal headers to an unauthorized party. Validate your user arguments against an allowlist of known URLs, or consider refactoring so that user-controlled data is not necessary.<br />**Likelihood**: LOW<br />**Confidence**: LOW<br />**CWE**: <br />- CWE-918: Server-Side Request Forgery (SSRF)
    <br />**OWASP**: <br />- A10:2021 - Server-Side Request Forgery (SSRF)
  </Accordion>
</AccordionGroup>