Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
discourse/app/assets/javascripts/discourse
History
Blake Erickson a373bf2a01 SECURITY: XSS on chat excerpts 
Non-markdown tags weren't being escaped in chat excerpts. This could be
triggered by editing a chat message containing a tag (self XSS), or by
replying to a chat message with a tag (XSS).

Co-authored-by: Jan Cernik <jancernik12@gmail.com>
 		2023-03-16 15:27:09 -06:00
..
app SECURITY: XSS on chat excerpts 2023-03-16 15:27:09 -06:00
config DEV: Fail core JS test runs if deprecations are triggered (#20614) 2023-03-10 10:39:42 +00:00
lib DEV: Enable parallel babel processing in ember-cli (#20215) 2023-02-09 16:24:24 +00:00
public/assets/scripts DEV: Enable `@cached` decorator for themes and plugins (#19261) 2022-11-30 15:53:54 +00:00
scripts Drop support for iOS < 15.7 (#19847) 2023-01-16 17:28:59 +00:00
tests SECURITY: XSS on chat excerpts 2023-03-16 15:27:09 -06:00
.ember-cli REFACTOR: Sync up master with changes for Ember-CLI (#11671) 2021-01-12 10:13:21 -05:00
.npmrc DEV: Prevent npm usage (#13945) 2021-08-04 22:04:58 +02:00
ember-cli-build.js DEV: Enable parallel babel processing in ember-cli (#20215) 2023-02-09 16:24:24 +00:00
jsconfig.json DEV: Add `discourse/tests` to jsconfig (#19031) 2022-11-15 11:33:56 +00:00
package.json Build(deps): Bump @babel/core in /app/assets/javascripts (#20681) 2023-03-15 14:29:16 +01:00
testem.js DEV: Move `shouldLoadPluginTestJs()` (#19045) 2022-11-16 11:07:58 +01:00