Pentest site on local deployment instance

[samjjacko]

It would be worth before handing the site over to the game dev club to deploy the site locally and see if there are any glaring vulnerabilities, e.g.:

• Zap
• Cross-site scripting vulnerabilities from inline scripts, forms, etc, e.g. href=javascript:alert('XSS')
• Test malicious requests

Additionally, we should investigate configuring nginx, specifically CORS, to make cross-site scripting etc more difficult.

[github-actions]

Branch issue-122-Pentest_site_on_local_deployment_instance created!

[github-actions]

Could not create branch issue-122-Pentest_site_on_local_deployment_instance due to: Reference already exists - https://docs.github.com/rest/git/refs#create-a-reference