From 0fbe4c4de23a887335128e1a3d8982f7873e73c3 Mon Sep 17 00:00:00 2001
From: Nikhil <118773738+pablohashescobar@users.noreply.github.com>
Date: Thu, 29 Aug 2024 13:31:41 +0530
Subject: [PATCH] chore: limit svg uploads (#5462)

* fix: limit svg file uploads

* chore: limit svg uploads
---
 apiserver/plane/db/models/asset.py | 5 +++--
 apiserver/requirements/base.txt    | 1 -
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/apiserver/plane/db/models/asset.py b/apiserver/plane/db/models/asset.py
index 12f3434ef..a11ba89a4 100644
--- a/apiserver/plane/db/models/asset.py
+++ b/apiserver/plane/db/models/asset.py
@@ -1,11 +1,11 @@
 # Python imports
 from uuid import uuid4
 
+# Django import
 from django.conf import settings
 from django.core.exceptions import ValidationError
-
-# Django import
 from django.db import models
+from django.core.validators import FileExtensionValidator
 
 # Module import
 from .base import BaseModel
@@ -32,6 +32,7 @@ class FileAsset(BaseModel):
     asset = models.FileField(
         upload_to=get_upload_path,
         validators=[
+            FileExtensionValidator(allowed_extensions=["jpg", "jpeg", "png"]),
             file_size,
         ],
     )
diff --git a/apiserver/requirements/base.txt b/apiserver/requirements/base.txt
index 2a8d35219..9667346a8 100644
--- a/apiserver/requirements/base.txt
+++ b/apiserver/requirements/base.txt
@@ -61,4 +61,3 @@ zxcvbn==4.4.28
 pytz==2024.1
 # jwt
 PyJWT==2.8.0
-