ylqjgm
/
canvas-lms
mirror of https://github.com/instructure/canvas-lms.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
canvas-lms/app
History
Cody Cutrer 265be41077 sanitize unusual error report URLs when displaying them 
fixes CNVS-36827

test plan:
 * normal http/https URLS should still show up and be linkable
 * create an error report with of dubious nature (javascript link,
   ftp, or just flat out bogus, for example)
 * the error report page should still show it, but not as a link

Change-Id: Ica55f5cbcb33695d16b68ee98c1b6528bd9b63e5
Reviewed-on: https://gerrit.instructure.com/111574
QA-Review: Tucker McKnight <tmcknight@instructure.com>
Tested-by: Jenkins
Reviewed-by: Simon Williams <simon@instructure.com>
Product-Review: Cody Cutrer <cody@instructure.com>
 		2017-05-17 03:40:38 +00:00
..
coffeescripts Upgrade React, instructure-ui and instructure-icons 2017-05-16 21:15:44 +00:00
controllers use SAML2 gem for SAML logout flows 2017-05-17 01:00:24 +00:00
helpers [webpack] load scripts ASAP, but still execute after dom parsed 2017-05-16 23:42:38 +00:00
jsx [webpack] load scripts ASAP, but still execute after dom parsed 2017-05-16 23:42:38 +00:00
messages Fix link for offline export notifications 2017-04-07 21:25:53 +00:00
middleware allow custom throttling per access token or user id 2017-04-28 17:52:13 +00:00
models sanitize unusual error report URLs when displaying them 2017-05-17 03:40:38 +00:00
observers da licença part 19 2017-04-27 21:52:22 +00:00
presenters do some performance refactoring on grade summary presenter 2017-05-04 18:08:48 +00:00
serializers da licença part 21 2017-04-27 21:51:31 +00:00
stylesheets Replce "synch" with "sync" in blueprint courses 2017-05-15 18:59:33 +00:00
views sanitize unusual error report URLs when displaying them 2017-05-17 03:40:38 +00:00