upstream/mercurial-mirror Files · mercurial/templates/atom/changelogentry.tmpl

ssh: unban the use of pipe character in user@host:port string...

ssh: unban the use of pipe character in user@host:port string This vulnerability was fixed by the previous patch and there were more ways to exploit than using '|shellcmd'. So it doesn't make sense to reject only pipe character. Test cases are updated to actually try to exploit the bug. As the SSH bridge of git/svn subrepos are not managed by our code, the tests for non-hg subrepos are just removed. This may be folded into the original patches.

av6 - - Load All Authors

File last commit:

r29439:c42a3fd5 default


                r33733:3fee7f7d

4.3.1 stable

Download file

             changelogentry.tmpl
        
                    43 lines
            
             | 1.3 KiB
            
                | application/x-cheetah
            
             |
                CheetahLexer
            
             / mercurial / templates / atom / changelogentry.tmpl
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

       <entry>

        <title>{inbranch%"{if(name, '[{name|escape}] ')}"}{branches%"{if(name, '[{name|escape}] ')}"}{desc|strip|firstline|strip|escape|nonempty}</title>

        <id>{urlbase}{url|urlescape}#changeset-{node}</id>

        <link href="{urlbase}{url|urlescape}rev/{node|short}"/>

        <author>

         <name>{author|person|escape}</name>

         <email>{author|email|obfuscate}</email>

        </author>

        <updated>{date|rfc3339date}</updated>

        <published>{date|rfc3339date}</published>

        <content type="xhtml">

         <table xmlns="http://www.w3.org/1999/xhtml">

          <tr>

           <th style="text-align:left;">changeset</th>

           <td>{node|short}</td>

          </tr>

          <tr>

           <th style="text-align:left;">branch</th>

           <td>{inbranch%"{name|escape}"}{branches%"{name|escape}"}</td>

          </tr>

          <tr>

           <th style="text-align:left;">bookmark</th>

           <td>{bookmarks%"{name|escape}"}</td>

          </tr>

          <tr>

           <th style="text-align:left;">tag</th>

           <td>{tags%"{name|escape}"}</td>

          </tr>

          <tr>

           <th style="text-align:left;">user</th>

           <td>{author|obfuscate}</td>

          </tr>

          <tr>

           <th style="text-align:left;vertical-align:top;">description</th>

           <td>{desc|strip|escape|websub|addbreaks|nonempty}</td>

          </tr>

          <tr>

           <th style="text-align:left;vertical-align:top;">files</th>

           <td>{files}</td>

          </tr>

         </table>

        </content>

       </entry>

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				<entry>
				<title>{inbranch%"{if(name, '[{name\|escape}] ')}"}{branches%"{if(name, '[{name\|escape}] ')}"}{desc\|strip\|firstline\|strip\|escape\|nonempty}</title>
				<id>{urlbase}{url\|urlescape}#changeset-{node}</id>
				<link href="{urlbase}{url\|urlescape}rev/{node\|short}"/>
				<author>
				<name>{author\|person\|escape}</name>
				<email>{author\|email\|obfuscate}</email>
				</author>
				<updated>{date\|rfc3339date}</updated>
				<published>{date\|rfc3339date}</published>
				<content type="xhtml">
				<table xmlns="http://www.w3.org/1999/xhtml">
				<tr>
				<th style="text-align:left;">changeset</th>
				<td>{node\|short}</td>
				</tr>
				<tr>
				<th style="text-align:left;">branch</th>
				<td>{inbranch%"{name\|escape}"}{branches%"{name\|escape}"}</td>
				</tr>
				<tr>
				<th style="text-align:left;">bookmark</th>
				<td>{bookmarks%"{name\|escape}"}</td>
				</tr>
				<tr>
				<th style="text-align:left;">tag</th>
				<td>{tags%"{name\|escape}"}</td>
				</tr>
				<tr>
				<th style="text-align:left;">user</th>
				<td>{author\|obfuscate}</td>
				</tr>
				<tr>
				<th style="text-align:left;vertical-align:top;">description</th>
				<td>{desc\|strip\|escape\|websub\|addbreaks\|nonempty}</td>
				</tr>
				<tr>
				<th style="text-align:left;vertical-align:top;">files</th>
				<td>{files}</td>
				</tr>
				</table>
				</content>
				</entry>