Improve HTML escaping helper (#12383) - gitea.git - Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD: https://github.com/go-gitea/gitea

diff options

author	silverwind <me@silverwind.io>	2020-07-31 04:14:04 +0200
committer	GitHub <noreply@github.com>	2020-07-30 22:14:04 -0400
commit	11dcc177637a234fd624db5d766746dea992bcd4 (patch)
tree	457c6a6be21298c41c23761356a036d41d4f6767 /models/context.go
parent	24f86257900866ced5aa6b470d05f6d9f1a82de0 (diff)
download	gitea-11dcc177637a234fd624db5d766746dea992bcd4.tar.gz gitea-11dcc177637a234fd624db5d766746dea992bcd4.zip

Improve HTML escaping helper (#12383)

The previous method did not escape single quotes which under some circumstances can lead to XSS vulnerabilites and the fact that it depends on jQuery is also not ideal. Replace it with a lightweight module. Co-authored-by: techknowlogick <techknowlogick@gitea.io>

Diffstat (limited to 'models/context.go')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: