diff options
| author | Stas Vilchik <vilchiks@gmail.com> | 2016-09-15 16:40:30 +0200 |
|---|---|---|
| committer | Stas Vilchik <vilchiks@gmail.com> | 2016-09-15 16:40:30 +0200 |
| commit | c5a1c744b4aad3f7753e928e5fc1c02759e4e09f (patch) | |
| tree | ea9247327cd0bebbf4faa95bd16b1cc616ba636b /server/sonar-web/src/main/js | |
| parent | fac6e241bdb9cf31bc16e219a9fca3f4bc7641a9 (diff) | |
| parent | ff3377f4bcb5b97c16d7bee5d2dd0cae9b95cf9e (diff) | |
| download | sonarqube-c5a1c744b4aad3f7753e928e5fc1c02759e4e09f.tar.gz sonarqube-c5a1c744b4aad3f7753e928e5fc1c02759e4e09f.zip | |
Merge remote-tracking branch 'origin/branch-5.6'
Diffstat (limited to 'server/sonar-web/src/main/js')
| -rw-r--r-- | server/sonar-web/src/main/js/apps/quality-profiles/views/ChangeProjectsView.js | 3 | ||||
| -rw-r--r-- | server/sonar-web/src/main/js/main/processes.js | 3 |
2 files changed, 4 insertions, 2 deletions
diff --git a/server/sonar-web/src/main/js/apps/quality-profiles/views/ChangeProjectsView.js b/server/sonar-web/src/main/js/apps/quality-profiles/views/ChangeProjectsView.js index 5292bfa183e..e2c1178a73b 100644 --- a/server/sonar-web/src/main/js/apps/quality-profiles/views/ChangeProjectsView.js +++ b/server/sonar-web/src/main/js/apps/quality-profiles/views/ChangeProjectsView.js @@ -17,6 +17,7 @@ * along with this program; if not, write to the Free Software Foundation, * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ +import escapeHtml from 'escape-html'; import ModalFormView from '../../../components/common/modal-form'; import Template from '../templates/quality-profiles-change-projects.hbs'; import { translate } from '../../../helpers/l10n'; @@ -40,7 +41,7 @@ export default ModalFormView.extend({ readOnly: false, focusSearch: false, format (item) { - return item.name; + return escapeHtml(item.name); }, selectUrl: window.baseUrl + '/api/qualityprofiles/add_project', deselectUrl: window.baseUrl + '/api/qualityprofiles/remove_project', diff --git a/server/sonar-web/src/main/js/main/processes.js b/server/sonar-web/src/main/js/main/processes.js index 48f4cfe81ed..98ac39b6e14 100644 --- a/server/sonar-web/src/main/js/main/processes.js +++ b/server/sonar-web/src/main/js/main/processes.js @@ -21,6 +21,7 @@ import $ from 'jquery'; import _ from 'underscore'; import Backbone from 'backbone'; import Marionette from 'backbone.marionette'; +import escapeHtml from 'escape-html'; import { translate } from '../helpers/l10n'; import { getCSRFTokenName, getCSRFTokenValue } from '../helpers/request'; @@ -160,7 +161,7 @@ function handleAjaxError (jqXHR) { if (jqXHR.responseJSON != null && jqXHR.responseJSON.errors != null) { message = _.pluck(jqXHR.responseJSON.errors, 'msg').join('. '); } - failBackgroundProcess(jqXHR.processId, message); + failBackgroundProcess(jqXHR.processId, escapeHtml(message)); } } |