discourse/plugins/chat/spec/system
Blake Erickson a373bf2a01 SECURITY: XSS on chat excerpts
Non-markdown tags weren't being escaped in chat excerpts. This could be
triggered by editing a chat message containing a tag (self XSS), or by
replying to a chat message with a tag (XSS).

Co-authored-by: Jan Cernik <jancernik12@gmail.com>
2023-03-16 15:27:09 -06:00
..
list_channels UX: orders public channels by slug instead of title (#20188) 2023-02-07 10:36:28 +01:00
page_objects DEV: Change sidebar header dropdown to use wait_for_animation (#20627) 2023-03-10 14:54:57 +10:00
shortcuts DEV: rework the chat-live-pane (#20519) 2023-03-03 13:09:25 +01:00
user_menu_notifications DEV: Pass messageId as a dynamic segment instead of a query param (#20013) 2023-02-01 12:39:23 -03:00
user_status DEV: attempts to move all Jobs.run_immediately! at top (#19688) 2023-01-03 11:32:27 +01:00
anonymous_spec.rb DEV: start glimmer-ification and optimisations of chat plugin (#19531) 2022-12-21 13:21:02 +01:00
archive_channel_spec.rb FIX: Improve error reporting and failure modes for channel archiving (#19791) 2023-01-12 10:04:46 +10:00
bookmark_message_spec.rb PERF: applies optimisations on chat-live pane (#20532) 2023-03-06 16:42:11 +01:00
browse_page_spec.rb FIX: correctly uses request_uri to generate load_more_url (#19680) 2023-01-03 00:19:13 +01:00
channel_about_page_spec.rb FEATURE: Allow editing channel slug (#19948) 2023-01-30 13:18:34 +10:00
channel_info_pages_spec.rb DEV: /channel -> /c chat route rename (#19782) 2023-01-27 09:58:12 -03:00
channel_members_page_spec.rb DEV: /channel -> /c chat route rename (#19782) 2023-01-27 09:58:12 -03:00
channel_message_selection_spec.rb FIX: Regression with chat shift+select messages (#20305) 2023-02-15 08:49:56 +01:00
channel_selector_modal_spec.rb DEV: Improve performance of system test sign_in helper (#19579) 2022-12-22 16:03:27 +00:00
channel_settings_page_spec.rb DEV: /channel -> /c chat route rename (#19782) 2023-01-27 09:58:12 -03:00
chat_channel_spec.rb SECURITY: XSS on chat excerpts 2023-03-16 15:27:09 -06:00
chat_composer_spec.rb FIX: correctly filters input with pre-filled value (#20154) 2023-02-02 23:49:36 +01:00
closed_channel_spec.rb REFACTOR: Fix pluralized strings in chat plugin (#20357) 2023-02-20 10:31:02 +01:00
create_channel_spec.rb DEV: rework the chat-live-pane (#20519) 2023-03-03 13:09:25 +01:00
deleted_channel_spec.rb DEV: start glimmer-ification and optimisations of chat plugin (#19531) 2022-12-21 13:21:02 +01:00
deleted_message_spec.rb PERF: applies optimisations on chat-live pane (#20532) 2023-03-06 16:42:11 +01:00
draft_message_spec.rb FIX: do not show infinite loading state on draft with new users (#20582) 2023-03-08 15:21:20 +01:00
drawer_spec.rb DEV: adds a addChatDrawerStateCallback API (#20640) 2023-03-10 18:49:59 +01:00
edited_message_spec.rb FIX: ensures edited message is correctly re-decorated (#20637) 2023-03-10 17:06:13 +01:00
flag_message_spec.rb DEV: rework the chat-live-pane (#20519) 2023-03-03 13:09:25 +01:00
hashtag_autocomplete_spec.rb PERF: applies optimisations on chat-live pane (#20532) 2023-03-06 16:42:11 +01:00
jit_messages_spec.rb REFACTOR: Fix pluralized strings in chat plugin (#20357) 2023-02-20 10:31:02 +01:00
mention_warnings_spec.rb PERF: applies optimisations on chat-live pane (#20532) 2023-03-06 16:42:11 +01:00
message_notifications_mobile_spec.rb DEV: attempts to move all Jobs.run_immediately! at top (#19688) 2023-01-03 11:32:27 +01:00
message_notifications_with_sidebar_spec.rb DEV: rework the chat-live-pane (#20519) 2023-03-03 13:09:25 +01:00
message_user_info.rb DEV: rework the chat-live-pane (#20519) 2023-03-03 13:09:25 +01:00
move_message_to_channel_spec.rb DEV: start glimmer-ification and optimisations of chat plugin (#19531) 2022-12-21 13:21:02 +01:00
navigating_to_message_spec.rb DEV: rework the chat-live-pane (#20519) 2023-03-03 13:09:25 +01:00
navigation_spec.rb DEV: /channel -> /c chat route rename (#19782) 2023-01-27 09:58:12 -03:00
network_reconciliation_spec.rb FIX: ensures recovering network doesn't create unread mentions (#19597) 2022-12-23 07:38:45 +01:00
react_to_message_spec.rb FIX: prevents duplicate reactions (#20527) 2023-03-03 20:29:24 +01:00
read_only_spec.rb REFACTOR: Fix pluralized strings in chat plugin (#20357) 2023-02-20 10:31:02 +01:00
sidebar_navigation_menu_spec.rb DEV: /channel -> /c chat route rename (#19782) 2023-01-27 09:58:12 -03:00
sidebars_spec.rb DEV: start glimmer-ification and optimisations of chat plugin (#19531) 2022-12-21 13:21:02 +01:00
silenced_user_spec.rb DEV: start glimmer-ification and optimisations of chat plugin (#19531) 2022-12-21 13:21:02 +01:00
single_thread_spec.rb DEV: Introduces a wait_for_animation system spec helper (#20573) 2023-03-08 16:49:20 +01:00
sticky_date_spec.rb DEV: rework the chat-live-pane (#20519) 2023-03-03 13:09:25 +01:00
transcript_spec.rb DEV: Introduces a wait_for_animation system spec helper (#20573) 2023-03-08 16:49:20 +01:00
unfollow_dm_channel_spec.rb DEV: Improve performance of system test sign_in helper (#19579) 2022-12-22 16:03:27 +00:00
update_last_read.rb FIX: improves unread state precision (#20615) 2023-03-09 19:06:33 +01:00
uploads_spec.rb FIX: Uploading multiple files to chat could cause canellations (#20605) 2023-03-09 09:17:54 +01:00
user_card_spec.rb DEV: start glimmer-ification and optimisations of chat plugin (#19531) 2022-12-21 13:21:02 +01:00
user_chat_preferences_spec.rb DEV: rework the chat-live-pane (#20519) 2023-03-03 13:09:25 +01:00
visit_channel_spec.rb DEV: Pass messageId as a dynamic segment instead of a query param (#20013) 2023-02-01 12:39:23 -03:00