Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Already on GitHub? Sign in to your account

[WIP] Sanitize user data #799

Merged
merged 2 commits into from Apr 19, 2013

Conversation

Projects
None yet
2 participants
Contributor

stenington commented Mar 26, 2013

I believe this sanitizes the user data used directly in templates throughout the Backpack, and removes what seemed to be some dead template code.

We need to do some additional sanitizing here, for example, where we include JSON-serialized data in script tags.

Contributor

stenington commented Mar 27, 2013

Just a note: nunjucks should have autoescape functionality very soon! https://github.com/jlongster/nunjucks/pull/32#issuecomment-15545820

Contributor

brianloveswords commented Mar 27, 2013

@toolness check this out and make sure it doesn't break any backpack connect functionality in particular.

Contributor

brianloveswords commented Apr 19, 2013

👍

@brianloveswords brianloveswords added a commit that referenced this pull request Apr 19, 2013

@brianloveswords brianloveswords Merge pull request #799 from stenington/sanitize
[WIP] Sanitize user data
c213cde

@brianloveswords brianloveswords merged commit c213cde into mozilla:development Apr 19, 2013

1 check passed

default The Travis build passed
Details
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment