Javi Martín ad995f5a7c
Check for valid segments before returning recipients ...
We were getting a warning by CodeQL regarding a possible code injection
in the `send(segment)` code.
In practice, this wasn't a big deal because the `self.recipients` method
is only called in the admin section, meaning only admin users could try
to take advantage of the code injection, and because this code is rarely
called with an invalid segment due to several conditions in the code
checking that the user segment is valid, with the only exception being
the `generate_csv` action in the `Admin::EmailsDownloadController`.
In any case, now we're checking that the segment is valid before calling
the `send` method. Since now we're making sure that the segment is valid
in the `recipients` method itself, we can remove this check from methods
calling it.
2025-04-01 16:13:17 +02:00
2025-01-23 17:03:30 +01:00
2024-11-13 15:55:20 +01:00
2019-04-17 17:40:56 +02:00
2024-09-30 11:14:01 +02:00
2022-02-23 18:21:38 +01:00
2021-08-16 16:31:04 +02:00
2024-12-23 17:35:33 +01:00
2025-01-23 17:03:30 +01:00
2024-04-11 19:08:02 +02:00
2024-10-10 09:56:44 +02:00
2024-10-30 15:57:44 +01:00
2023-08-18 14:56:16 +02:00
2019-04-17 17:40:56 +02:00
2024-11-12 15:15:34 +01:00
2025-03-26 16:42:04 +01:00
2021-08-16 16:31:04 +02:00
2024-10-10 09:56:44 +02:00
2024-06-05 16:10:56 +02:00
2024-06-05 16:10:56 +02:00
2024-11-12 15:15:34 +01:00
2024-03-21 18:27:49 +01:00
2021-12-30 15:50:02 +01:00
2019-04-17 17:40:56 +02:00
2022-03-22 15:52:36 +01:00
2025-04-01 16:13:17 +02:00
2022-05-03 18:39:42 +02:00
2022-03-24 17:05:35 +01:00
2019-11-05 13:03:45 +01:00
2024-07-22 18:35:35 +02:00
2019-10-26 13:03:48 +02:00
2019-06-12 18:03:53 +02:00
2024-09-30 11:14:01 +02:00
2021-09-03 11:49:53 +02:00
2024-09-30 11:14:01 +02:00
2020-07-08 18:34:58 +02:00
2025-01-23 17:03:30 +01:00
2019-03-27 15:22:14 +01:00
2024-07-05 17:11:29 +02:00
2020-04-27 19:26:37 +02:00
2023-08-30 14:46:35 +02:00
2023-11-22 14:44:24 +01:00
2019-10-24 17:11:47 +02:00
2019-04-17 17:40:56 +02:00
2019-10-24 17:56:03 +02:00
2021-04-13 13:52:18 +02:00
2024-12-23 17:35:33 +01:00
2019-10-25 19:29:12 +02:00
2024-06-05 16:10:56 +02:00
2024-06-05 16:10:56 +02:00
2019-10-23 14:39:31 +02:00
2024-04-02 16:31:10 +02:00
2019-03-14 17:25:43 +01:00
2019-04-29 13:08:43 -05:00
2021-09-20 20:27:37 +02:00
2023-09-07 19:14:03 +02:00
2021-08-16 16:31:04 +02:00
2021-08-16 16:31:04 +02:00
2024-10-30 15:57:44 +01:00
2019-04-17 17:40:56 +02:00
2023-09-07 19:14:03 +02:00
2024-09-30 11:14:01 +02:00
2021-08-16 16:31:04 +02:00
2019-04-17 17:40:56 +02:00
2021-12-20 15:07:46 +01:00
2019-10-24 17:11:47 +02:00
2023-08-30 14:46:35 +02:00
2024-07-22 18:35:35 +02:00
2024-10-10 09:56:44 +02:00
2024-07-22 18:35:35 +02:00
2025-04-01 14:53:27 +02:00
2021-09-03 11:49:53 +02:00
2023-08-30 14:46:35 +02:00
2024-04-11 17:59:40 +02:00
2019-10-26 13:21:36 +02:00
2020-12-02 12:13:02 +01:00
2025-01-23 17:16:57 +01:00
2024-10-10 09:47:47 +02:00
2023-08-30 14:46:35 +02:00
2019-03-14 17:25:43 +01:00
2023-08-18 14:56:16 +02:00
2021-08-16 16:31:04 +02:00
2021-08-16 16:31:04 +02:00
2024-10-10 09:56:44 +02:00
2019-10-25 19:29:12 +02:00
2025-03-26 16:42:04 +01:00
2019-04-17 17:40:56 +02:00
2019-10-24 17:11:47 +02:00
2019-04-17 17:40:56 +02:00
2024-11-13 15:55:20 +01:00
2024-10-10 09:56:44 +02:00
2021-02-26 16:16:51 +01:00
2021-01-12 14:50:37 +01:00
ad995f5a7c