discourse

mirror of https://github.com/discourse/discourse.git synced 2024-11-28 09:55:21 +08:00

History

Roman Rizzi 5e4c0e2caa FEATURE: Treat site settings as plain text and add a new HTML type. (#12618 ) To add an extra layer of security, we sanitize settings before shipping them to the client. We don't sanitize those that have the "html" type. The CookedPostProcessor already uses Loofah for sanitization, so I chose to also use it for this. I added it to our gemfile since we installed it as a transitive dependency.		2021-04-07 12:51:19 -03:00
..
assets	FEATURE: Treat site settings as plain text and add a new HTML type. (#12618 )	2021-04-07 12:51:19 -03:00
controllers	FEATURE: Treat site settings as plain text and add a new HTML type. (#12618 )	2021-04-07 12:51:19 -03:00
helpers	Revert "FEATURE: Introduce theme/component QUnit tests (#12517 )" (#12632 )	2021-04-07 17:45:49 +03:00
jobs	FIX: Autocorrect values for dropdown imported user fields (#12572 )	2021-03-31 19:19:57 +03:00
mailers	FIX: Correctly use invite to topic email templates (#12411 )	2021-03-16 17:08:54 +02:00
models	Revert "FEATURE: Introduce theme/component QUnit tests (#12517 )" (#12632 )	2021-04-07 17:45:49 +03:00
serializers	FEATURE: Allow setting avatar flair for automatic groups (#12586 )	2021-04-06 11:13:06 -04:00
services	FEATURE: Treat site settings as plain text and add a new HTML type. (#12618 )	2021-04-07 12:51:19 -03:00
views	Revert "FEATURE: Introduce theme/component QUnit tests (#12517 )" (#12632 )	2021-04-07 17:45:49 +03:00