mirror of
https://codeberg.org/forgejo/forgejo
synced 2024-06-23 18:32:46 +02:00
4fdd0ed728
- It's possible for reviews to not be assiocated with users, when they
were migrated from another forge instance. In the migration code,
there's no sanitization check for author names, so they could contain
HTML tags and thus needs to be properely escaped.
- Pass `$reviewerName` trough `Escape`.
(cherry picked from commit
|
||
|---|---|---|
| .. | ||
| actions | ||
| branch | ||
| cite | ||
| diff | ||
| editor | ||
| find | ||
| graph | ||
| issue | ||
| migrate | ||
| projects | ||
| pulls | ||
| release | ||
| settings | ||
| tag | ||
| wiki | ||
| activity.tmpl | ||
| blame.tmpl | ||
| branch_dropdown.tmpl | ||
| clone_buttons.tmpl | ||
| clone_script.tmpl | ||
| commit_page.tmpl | ||
| commit_status.tmpl | ||
| commit_statuses.tmpl | ||
| commits.tmpl | ||
| commits_list.tmpl | ||
| commits_list_small.tmpl | ||
| commits_table.tmpl | ||
| create.tmpl | ||
| create_helper.tmpl | ||
| empty.tmpl | ||
| file_info.tmpl | ||
| forks.tmpl | ||
| graph.tmpl | ||
| header.tmpl | ||
| home.tmpl | ||
| icon.tmpl | ||
| packages.tmpl | ||
| release_tag_header.tmpl | ||
| search.tmpl | ||
| search_name.tmpl | ||
| shabox_badge.tmpl | ||
| sub_menu.tmpl | ||
| unicode_escape_prompt.tmpl | ||
| upload.tmpl | ||
| user_cards.tmpl | ||
| view_file.tmpl | ||
| view_list.tmpl | ||
| watchers.tmpl | ||