drupalCreateUser([ 'administer modules', 'administer themes', ]); $this->drupalLogin($admin); } /** * Tests extension info cannot create XSS vulnerabilities. */ public function testExtensionInfoXss(): void { $this->drupalGet("admin/modules"); $this->assertSession()->pageTextContains("alert('Evil module name');"); $this->assertSession()->pageTextContains("alert('Evil module desc');"); $this->assertSession()->responseNotContains("