Mercurial > kallithea
graph
-
compare: prevent XSS due to unescaped branch/tag/bookmark names stableTue, 26 Feb 2019 21:27:42 +0100, by Thomas De Schampheleire
-
templates/summary: escape branch/tag/bookmark names in 'Download as zip' links to prevent XSS stableMon, 11 Feb 2019 21:36:55 +0100, by Mads Kiilerich
-
lib: sanitize HTML for all types of README rendering, not only markdown stableSat, 26 Jan 2019 20:27:50 +0100, by Thomas De Schampheleire
-
cleanup: remove unnecessary (and potentially problematic) use of 'literal' stableSat, 26 Jan 2019 20:00:14 +0100, by Thomas De Schampheleire
-
pullrequests: prevent XSS in 'Potential Reviewers' list when first and last names cannot be trusted stableTue, 26 Feb 2019 21:50:15 +0100, by Thomas De Schampheleire
-
compare: correct display of special branch names in initial placeholderWed, 27 Feb 2019 02:30:58 +0100, by Mads Kiilerich
-
compare: prevent XSS due to unescaped branch/tag/bookmark namesTue, 26 Feb 2019 21:27:42 +0100, by Thomas De Schampheleire
-
base: escape branch/tag/bookmark names in 'Switch To' menu to prevent XSSWed, 27 Feb 2019 02:30:18 +0100, by Mads Kiilerich
-
templates/summary: escape branch/tag/bookmark names in 'Download as zip' links to prevent XSSMon, 11 Feb 2019 21:36:55 +0100, by Mads Kiilerich
-
lib: sanitize HTML for all types of README rendering, not only markdownSat, 26 Jan 2019 20:27:50 +0100, by Thomas De Schampheleire
-
cleanup: remove unnecessary (and potentially problematic) use of 'literal'Sat, 26 Jan 2019 20:00:14 +0100, by Thomas De Schampheleire
-
base: when using a custom select2 escapeMarkup function, make it clear that the exception only is for a static safe stringWed, 27 Feb 2019 02:29:34 +0100, by Mads Kiilerich
-
pullrequests: prevent XSS in @mention completion when first and last names cannot be trustedWed, 27 Feb 2019 02:23:26 +0100, by Mads Kiilerich