Veracode SSRF Flag for http.NewRequestWithContext: Mitigating Risk in My Go Application
I’m working on a Go application where I’m using http.NewRequestWithContext to make outgoing requests. During a recent Veracode scan, I received an SSRF (Server-Side Request Forgery) flag for the following line:
req, err:= http.NewRequestWi…