kotovalexarian-likes-github/rails--rails
1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
Code Releases Activity
rails--rails/actionview/test/template
History
Michael Koziarski 0c7ac34aed Stop using i18n's built in HTML error handling. 
i18n doesn't depend on active support which means it can't use our html_safe
code to do its escaping when generating the spans.  Rather than try to sanitize
the output from i18n, just revert to our old behaviour of rescuing the error
and constructing the tag ourselves.

Fixes: CVE-2013-4491
2013-12-02 16:42:16 -08:00
..
erb
html-scanner
testing
active_model_helper_test.rb
asset_tag_helper_test.rb
atom_feed_helper_test.rb
capture_helper_test.rb
compiled_templates_test.rb
date_helper_i18n_test.rb
date_helper_test.rb Remove privatizing of Fixnum#/ from assert_distance_of_time_in_words 2013-08-05 21:52:13 -04:00
debug_helper_test.rb
dependency_tracker_test.rb
digestor_test.rb Ensure the state is clean after one failure 2013-10-16 19:43:10 -03:00
erb_util_test.rb Minor typo fixes 2013-11-27 02:27:38 +09:00
form_collections_helper_test.rb Use the given name in html_options for the hidden field in collection_check_boxes 2013-09-24 13:42:06 -05:00
form_helper_test.rb handle :namespace form option in collection labels 2013-09-22 21:49:01 +03:00
form_options_helper_i18n_test.rb
form_options_helper_test.rb Fix some edge cases for AV select helper with :selected option 2013-09-23 17:48:23 +03:00
form_tag_helper_test.rb Added an enforce_utf8 hash option for form_tag method 2013-07-07 23:49:38 +09:00
javascript_helper_test.rb Add "extname" option to javascript_include_tag 2013-08-03 09:30:06 -05:00
log_subscriber_test.rb
lookup_context_test.rb ActionView::MissingTemplate for partials includes underscore. 2013-12-02 08:35:34 +01:00
number_helper_test.rb Escape the unit value provided to number_to_currency 2013-12-02 16:41:14 -08:00
output_buffer_test.rb
output_safety_helper_test.rb
record_identifier_test.rb
record_tag_helper_test.rb
render_test.rb ActionView::MissingTemplate for partials includes underscore. 2013-12-02 08:35:34 +01:00
resolver_patterns_test.rb Fix method name typos 2013-09-05 10:43:57 +05:30
sanitize_helper_test.rb
streaming_render_test.rb
tag_helper_test.rb Convert CDATA input to string before gsub'ing 2013-10-29 18:17:57 +01:00
template_error_test.rb Use set_backtrace instead of @backtrace in ActionView error 2013-11-16 04:41:28 +09:00
template_test.rb
test_case_test.rb
test_test.rb
text_helper_test.rb More typo fixes 2013-11-27 03:56:12 +09:00
translation_helper_test.rb Stop using i18n's built in HTML error handling. 2013-12-02 16:42:16 -08:00
url_helper_test.rb Merge pull request #10471 from andyw8/button_to_params 2013-10-24 18:02:19 -02:00