]> git.ipfire.org Git - thirdparty/git.git/commitdiff
projects / thirdparty / git.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | combined (merge: 3288d99 a376e37)
Merge branch 'jk/gitweb-anti-xss'
authorJunio C Hamano <gitster@pobox.com>
Sun, 1 Dec 2019 17:04:41 +0000 (09:04 -0800)
committerJunio C Hamano <gitster@pobox.com>
Sun, 1 Dec 2019 17:04:41 +0000 (09:04 -0800)
Some codepaths in "gitweb" that forgot to escape URLs generated
based on end-user input have been corrected.

* jk/gitweb-anti-xss:
  gitweb: escape URLs generated by href()
  t/gitweb-lib.sh: set $REQUEST_URI
  t/gitweb-lib.sh: drop confusing quotes
  t9502: pass along all arguments in xss helper

1  2 
gitweb/gitweb.perl patch | diff1 | diff2 | blob | history

diff --cc gitweb/gitweb.perl
Simple merge
Unnamed repository; edit this file 'description' to name the repository.