d8a8961b99
* Sanitize user-input on file name - Sanitize user-input before it get passed into the DOM. - Prevent things like "<iframe onload=alert(1)></iframe>" from being executed. This isn't a XSS attack as the server seems to be santizing the path as well. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> |
||
|---|---|---|
| .. | ||
| comp | ||
| admin-common.js | ||
| admin-emails.js | ||
| admin-users.js | ||
| clipboard.js | ||
| codeeditor.js | ||
| colorpicker.js | ||
| common-global.js | ||
| common-issue.js | ||
| common-organization.js | ||
| contextpopup.js | ||
| dropzone.js | ||
| emoji.js | ||
| eventsource.sharedworker.js | ||
| heatmap.js | ||
| imagediff.js | ||
| install.js | ||
| notification.js | ||
| org-team.js | ||
| repo-branch.js | ||
| repo-code.js | ||
| repo-commit.js | ||
| repo-common.js | ||
| repo-diff.js | ||
| repo-editor.js | ||
| repo-graph.js | ||
| repo-home.js | ||
| repo-issue-content.js | ||
| repo-issue.js | ||
| repo-legacy.js | ||
| repo-migrate.js | ||
| repo-migration.js | ||
| repo-projects.js | ||
| repo-release.js | ||
| repo-settings.js | ||
| repo-template.js | ||
| repo-wiki.js | ||
| serviceworker.js | ||
| sshkey-helper.js | ||
| stopwatch.js | ||
| tablesort.js | ||
| tribute.js | ||
| user-auth-u2f.js | ||
| user-auth.js | ||
| user-settings.js | ||