##// END OF EJS Templates
Commit Message Age Author Refs
load previous
r1841:e36eb8b6
docs: updated api documentation
0
r1840:05beb7b6
markup-renderer: use safe fetching of attributes to prevent from errors on malformed html.
0
r1839:b52a5a91
auth-token: only delete token if it exists.
0
r1838:b8e3feed
security: escape flash messaged VCS errors to prevent XSS atacks.
0
r1837:a499b95c
docs: added CI integration docs.
0
r1836:d665f40f
docs: updated repo extra fields documentation.
0
r1835:eb2b308f
docs: updated webhook documentation.
0
r1834:b6177862
audit-logs: don't use old style parser for new audit logs.
0
r1833:56150ab5
security: use custom writer for RST rendering to prevent injection of javascript: tags.
0
r1832:d176880c
user-api: use simple schema validator to be consistent how we validate between API and web views.
0
r1831:87ca65d7
user-group-api: use simple schema validator to be consistent how we validate user group names during creation between API and WEB.
0
r1830:d786fdd7
security: use safe escaped version of description for repo and repo group to potentially prevent any XSS attacks on returned data.
0
r1829:ff4add41
audit-logs: implemented full audit logs across application. - Fixes #5321 - Api+web actions - To be extended while we develop new features.
0
r1828:20cd932d
security: fix self-xss inside the email add functionality.
0
r1827:9e60361c
security: escape the returned paths of files and directories. Nodes function is used for autocomplete in files view, it prevents from XSS type of attack in file search.
0
r1826:76aa3640
security: use 404 instead of 403 in case missing permissions for comment deletion. - prevents resource discovery
0
r1825:fcaa19d4
security: don't use literal in notifications. - exposes security problems - we don't store any html anyway in the subject
0
r1824:fdf0761c
audit-logs: added *basic* support for NOT query term in audit logs.
0
r1823:e27e4796
audit-logs: updated action data attrbiutes.
0
r1822:4bb2ace4
audit-logs: consistent data between my-account and admin user logs.
0
load next
< 1 .. 174 175 176 177 178 .. 268 >
showing 20 out of 5342 commits