mirror of
https://codeberg.org/forgejo/forgejo
synced 2024-11-25 19:26:09 +01:00
Merge pull request 'replace v-html with v-text in branch search inputbox for XSS protection' (#5244) from earl-warren/forgejo:wip-xss into forgejo
Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/5244 Reviewed-by: Gusted <gusted@noreply.codeberg.org>
This commit is contained in:
commit
6114356dff
|
@ -289,13 +289,11 @@ export default sfc; // activate IDE's Vue plugin
|
||||||
<a href="#" @click="createNewBranch()">
|
<a href="#" @click="createNewBranch()">
|
||||||
<div v-show="shouldCreateTag">
|
<div v-show="shouldCreateTag">
|
||||||
<i class="reference tags icon"/>
|
<i class="reference tags icon"/>
|
||||||
<!-- eslint-disable-next-line vue/no-v-html -->
|
<span v-text="textCreateTag.replace('%s', searchTerm)"/>
|
||||||
<span v-html="textCreateTag.replace('%s', searchTerm)"/>
|
|
||||||
</div>
|
</div>
|
||||||
<div v-show="!shouldCreateTag">
|
<div v-show="!shouldCreateTag">
|
||||||
<svg-icon name="octicon-git-branch"/>
|
<svg-icon name="octicon-git-branch"/>
|
||||||
<!-- eslint-disable-next-line vue/no-v-html -->
|
<span v-text="textCreateBranch.replace('%s', searchTerm)"/>
|
||||||
<span v-html="textCreateBranch.replace('%s', searchTerm)"/>
|
|
||||||
</div>
|
</div>
|
||||||
<div class="text small">
|
<div class="text small">
|
||||||
<span v-if="isViewBranch || release">{{ textCreateBranchFrom.replace('%s', branchName) }}</span>
|
<span v-if="isViewBranch || release">{{ textCreateBranchFrom.replace('%s', branchName) }}</span>
|
||||||
|
|
Loading…
Reference in a new issue