From e916c623ef351c866cdef679e9c0950c816644a1 Mon Sep 17 00:00:00 2001
From: tdruez <tdruez@aboutcode.org>
Date: Mon, 30 Mar 2026 09:56:35 +0400
Subject: [PATCH] fix: incomplete URL sanitization for Slack webhook detection

Signed-off-by: tdruez <tdruez@aboutcode.org>
---
 scanpipe/models.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/scanpipe/models.py b/scanpipe/models.py
index f065fb4bb5..9ab24ab413 100644
--- a/scanpipe/models.py
+++ b/scanpipe/models.py
@@ -4843,7 +4843,8 @@ def deliver(self, pipeline_run, timeout=10):
             logger.info(f"Webhook {self.uuid} is not active.")
             return False
 
-        if "hooks.slack.com" in self.target_url:
+        parsed = urlparse(self.target_url)
+        if parsed.hostname == "hooks.slack.com":
             payload = self.get_slack_payload(pipeline_run)
         else:
             payload = self.get_payload(pipeline_run)