CodeQL Alert #2 - Security rule js/incomplete-url-substring-sanitization triggered

[jwj019]

Tool: CodeQL (2.13.4)
Rule: js/incomplete-url-substring-sanitization
Severity: warning (Security level: high)
Description: Incomplete URL substring sanitization
Instance reference: refs/heads/main
Instance state: open
Location: dist/index.js @ l24204:c7-l24204:c73
Message: 's3.amazonaws.com' can be anywhere in the URL, and arbitrary hosts may come before or after it.

CodeQL Alert Link