HTML escape at app/views/repositories/revision.rhtml.

author Toshi MARUYAMA <marutosijp2@yahoo.co.jp>

Tue, 2 Aug 2011 13:13:50 +0000 (13:13 +0000)

committer Toshi MARUYAMA <marutosijp2@yahoo.co.jp>

Tue, 2 Aug 2011 13:13:50 +0000 (13:13 +0000)
author Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
Tue, 2 Aug 2011 13:13:50 +0000 (13:13 +0000)
committer Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
Tue, 2 Aug 2011 13:13:50 +0000 (13:13 +0000)
diff --git a/app/views/repositories/revision.rhtml b/app/views/repositories/revision.rhtml

index b7383b36d1f135bd66968f6a65908efa92c0e95e..85b11d44129f2d823f02472e760b3940fa834f64 100644 (file)
--- a/app/views/repositories/revision.rhtml
+++ b/app/views/repositories/revision.rhtml
@@ -25,7 +25,7 @@
  
  <h2><%= l(:label_revision) %> <%= format_revision(@changeset) %></h2>
  
-<p><% if @changeset.scmid %>ID: <%= @changeset.scmid %><br /><% end %>
+<p><% if @changeset.scmid %>ID: <%= h(@changeset.scmid) %><br /><% end %>
  <span class="author"><%= authoring(@changeset.committed_on, @changeset.author) %></span></p>
  
  <%= textilizable @changeset.comments %>
author	Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
	Tue, 2 Aug 2011 13:13:50 +0000 (13:13 +0000)
committer	Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
	Tue, 2 Aug 2011 13:13:50 +0000 (13:13 +0000)