You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I've blocked the byte order markers as well now, in 0cc579b.
The only other thing we should be blocking is surrogates, but ruby literally won't let you write them as a range, presumably because it insists on them appearing as a valid pair which it would then decode into a single codepoint, so it's likely it will do the same if receiving them from the network.
Usernames are changed directly through the web site, and don't go via the API. This means they can contain non-XML safe characters.
This isn't a problem using any XML API or dump, but could cause problems with e.g. history dumps.
They should be stripped of non-XML characters, c.f.
openstreetmap-website/app/controllers/amf_controller.rb
Line 883 in d27cc80
The text was updated successfully, but these errors were encountered: