forgejo/web_src/js/features
Gusted 661d3d28e9
Prevent possible XSS when using jQuery (#18289)
In the case of misuse or misunderstanding from a developer whereby,
if `sel` can receive user-controlled data, jQuery `$(sel)` can lead to the
creation of a new element. Current usage is using hard-coded selectors
in the templates, but nobody prevents that from expanding to
user-controlled somehow.
2022-01-16 13:14:32 +08:00
..
comp Prevent possible XSS when using jQuery (#18289) 2022-01-16 13:14:32 +08:00
admin-common.js
admin-emails.js
admin-users.js
clipboard.js
codeeditor.js
colorpicker.js
common-global.js Prevent possible XSS when using jQuery (#18289) 2022-01-16 13:14:32 +08:00
common-issue.js
common-organization.js
contextpopup.js
dropzone.js
emoji.js
eventsource.sharedworker.js
heatmap.js
imagediff.js
install.js
notification.js
org-team.js
repo-branch.js Prevent possible XSS when using jQuery (#18289) 2022-01-16 13:14:32 +08:00
repo-code.js
repo-commit.js
repo-common.js Prevent possible XSS when using jQuery (#18289) 2022-01-16 13:14:32 +08:00
repo-diff.js Prevent possible XSS when using jQuery (#18289) 2022-01-16 13:14:32 +08:00
repo-editor.js
repo-graph.js
repo-home.js
repo-issue-content.js
repo-issue.js Prevent possible XSS when using jQuery (#18289) 2022-01-16 13:14:32 +08:00
repo-legacy.js Prevent possible XSS when using jQuery (#18289) 2022-01-16 13:14:32 +08:00
repo-migrate.js
repo-migration.js
repo-projects.js
repo-release.js Load EasyMDE/CodeMirror dynamically, remove RequireEasyMDE (#18069) 2022-01-05 13:17:25 +01:00
repo-settings.js Prevent possible XSS when using jQuery (#18289) 2022-01-16 13:14:32 +08:00
repo-template.js
repo-unicode-escape.js Add warning for BIDI characters in page renders and in diffs (#17562) 2022-01-07 02:18:52 +01:00
repo-wiki.js Load EasyMDE/CodeMirror dynamically, remove RequireEasyMDE (#18069) 2022-01-05 13:17:25 +01:00
serviceworker.js
sshkey-helper.js
stopwatch.js
tablesort.js
tribute.js
user-auth-webauthn.js Webauthn nits (#18284) 2022-01-15 17:52:56 +01:00
user-auth.js
user-settings.js