Fix display bugs in profiling #26731
Conversation
|
Thanks @lmeyer1 @PrestaShop/prestashop-maintainers I know it's not a regression, but can we move it to 1.7.8.x as this is for developers and it is quite safe? |
There was a problem hiding this comment.
I agree with you @kpodemski , a third opinion would be nice
thank @lmeyer1 for your contribution 👍
kpodemski
added
the
Waiting for PM
|
If this does not bring a risk of regression, we can make an exception |
marionf
removed
the
Waiting for PM
|
This fixes a feature added in 1.7.8.0 (see #20673) so I guess it could be qualified as a regression? |
| @@ -35,7 +35,7 @@ | |||
| {sql_queries data=$nb} | |||
| </td> | |||
| <td class="pre"> | |||
| <pre>{$q}</pre> | |||
| <pre>{$q nofilter}</pre> | |||
There was a problem hiding this comment.
@eternoendless @PierreRambaud
$q always contains HTML, for highlighting the values replaces by XX. If you feel that nofilter could be dangerous, then we need another way to highlight the blue text.
There was a problem hiding this comment.
Thanks, PR updated. The nofilter is not really needed here, the code added is useless and I can add an XSS because of this.
There was a problem hiding this comment.
XSS inside the query coming from the software in the profiler displayed when the developer explicitly tells the application to do it? 🤔
PierreRambaud
dismissed stale reviews from kpodemski and matthieu-rolland
via
450c850
PierreRambaud
force-pushed
the
fix-profiling
branch
from
450c850
to
b823fe5
Compare
tools/profiling/Hook.php
Outdated
| @@ -63,6 +63,10 @@ public static function coreRenderWidget($module, $registeredHookName, $params) | |||
|
|
|||
| $result = parent::coreRenderWidget($module, $registeredHookName, $params); | |||
|
|
|||
| if ($registeredHookName === null) { | |||
There was a problem hiding this comment.
Avoid error inside the contact form page
There was a problem hiding this comment.
Perhaps this would be best explained in a comment
| @@ -63,7 +63,11 @@ | |||
| </td> | |||
| <td data-value="{$data['location']}"> | |||
| <a href="javascript:void(0);" onclick="$('#callstack_{$callstack_md5}').toggle();">{$data['location']}</a> | |||
| <div id="callstack_{$callstack_md5}" style="display:none">{implode('<br>', $data['stack'])}</div> | |||
| <div id="callstack_{$callstack_md5}" style="display:none"> | |||
| {foreach $data['stack'] as $stack} | |||
There was a problem hiding this comment.
No need to implode with nofilter when you can use foreach :)
There was a problem hiding this comment.
You get a trailing <br> like this
PierreRambaud
force-pushed
the
fix-profiling
branch
from
b823fe5
to
337ba9f
Compare
PierreRambaud
added
the
Waiting for QA
sarahdib
added
the
Waiting for dev
Progi1984
changed the title
|
Before the PR: After the PR: This PR is QA ✔ |
atomiix
added
QA ✔️
|
QA approved, well done! Message to the maintainers: do not forget to milestone it before the merge. |
|
Thanks @lmeyer1! |
This change is