From 576e244b6c017dcda2d2d848670ec3b60db63409 Mon Sep 17 00:00:00 2001 From: Robert Speicher Date: Wed, 3 May 2017 14:28:46 +0000 Subject: [PATCH] Merge branch 'branch-name-escape' into 'security' Fix XSS in branches dropdown See merge request !2093 --- changelogs/unreleased/branch-name-escape.yml | 4 ++++ 1 file changed, 4 insertions(+) create mode 100644 changelogs/unreleased/branch-name-escape.yml diff --git a/changelogs/unreleased/branch-name-escape.yml b/changelogs/unreleased/branch-name-escape.yml new file mode 100644 index 00000000000..bf46235fd79 --- /dev/null +++ b/changelogs/unreleased/branch-name-escape.yml @@ -0,0 +1,4 @@ +--- +title: Fixed branches dropdown rendering branch names as HTML +merge_request: +author: