Skip to content

Escape search query (Backport 1.3) #3489

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Feb 11, 2018
Merged

Escape search query (Backport 1.3) #3489

merged 2 commits into from
Feb 11, 2018

Conversation

jonasfranz
Copy link
Member

Backport for #3486

@jonasfranz
Escape search query
dcd1701 
Signed-off-by: Jonas Franz <info@jonasfranz.de>

(cherry picked from commit 2970889)
@lafriks lafriks added the topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! label Feb 11, 2018
@lafriks lafriks added this to the 1.3.3 milestone Feb 11, 2018
@tboerger tboerger added the lgtm/need 1 This PR needs approval from one additional maintainer to be merged. label Feb 11, 2018
cez81
cez81 reviewed Feb 11, 2018
View reviewed changes
modules/templates/helper.go Outdated
"golang.org/x/net/html/charset"
"golang.org/x/text/transform"
"gopkg.in/editorconfig/editorconfig-core-go.v1"
"html"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Move to stdlibs

@jonasfranz
Reordered imports
e3c4325 
Signed-off-by: Jonas Franz <info@jonasfranz.de>
@cez81
Copy link
Contributor

cez81 commented Feb 11, 2018

LGTM

@tboerger tboerger added lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore. and removed lgtm/need 1 This PR needs approval from one additional maintainer to be merged. labels Feb 11, 2018
@lafriks lafriks merged commit ed27da4 into go-gitea:release/v1.3 Feb 11, 2018
@jonasfranz jonasfranz deleted the escape-html-backport-v1.3 branch February 11, 2018 20:24
@go-gitea go-gitea locked and limited conversation to collaborators Nov 23, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@lafriks lafriks lafriks approved these changes

+1 more reviewer

@cez81 cez81 cez81 left review comments

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore. topic/security Something leaks user information or is otherwise vulnerable. Should be fixed!
Projects
None yet
Milestone
1.3.3
Development

Successfully merging this pull request may close these issues.
4 participants
@jonasfranz @cez81 @lafriks @tboerger