James Moger
9 years ago
2 changed files with 3 additions and 1 deletions
+ 2
- 0
releases.moxie
View File
| - Fix exception when viewing a ticket with a patchset where the integration branch does not exist (issue-521, ticket-212) | - Fix exception when viewing a ticket with a patchset where the integration branch does not exist (issue-521, ticket-212) | ||||
| - Fix exception when deleting a repository using the FileTicketService (issue-522, ticket-213) | - Fix exception when deleting a repository using the FileTicketService (issue-522, ticket-213) | ||||
| - Do not inject team repository permissions as explicit user permissoins when editing a user (issue-462, ticket-214) | - Do not inject team repository permissions as explicit user permissoins when editing a user (issue-462, ticket-214) | ||||
| - Whitelist the target link attribute in the XSS filter (ticket-216) | |||||
| changes: | changes: | ||||
| - Replaced Dagger with Guice (ticket-80) | - Replaced Dagger with Guice (ticket-80) | ||||
| - Use release name as root directory in Gitblit GO artifacts (ticket-109) | - Use release name as root directory in Gitblit GO artifacts (ticket-109) | ||||
| - Florian Zschocke | - Florian Zschocke | ||||
| - Paul Martin | - Paul Martin | ||||
| - razzard | - razzard | ||||
| - Alexander Zabluda | |||||
| } | } | ||||
| # | # |
+ 1
- 1
src/main/java/com/gitblit/utils/JSoupXssFilter.java
View File
| "sub", "sup", "table", "tbody", "td", "tfoot", "th", "thead", "tr", "tt", "u", | "sub", "sup", "table", "tbody", "td", "tfoot", "th", "thead", "tr", "tt", "u", | ||||
| "ul", "var") | "ul", "var") | ||||
| .addAttributes("a", "class", "href", "style", "title") | |||||
| .addAttributes("a", "class", "href", "style", "target", "title") | |||||
| .addAttributes("blockquote", "cite") | .addAttributes("blockquote", "cite") | ||||
| .addAttributes("col", "span", "width") | .addAttributes("col", "span", "width") | ||||
| .addAttributes("colgroup", "span", "width") | .addAttributes("colgroup", "span", "width") |
Loading…