consul/nairobi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
551a2fe4e4d9f470ef8cbc756a5cc3f06e9a848f
nairobi/app/views
History
Javi Martín e470ea1cc1 Avoid JavaScript execution in banner URLs 
Using `sanitize` we make sure the `href` attribute does not execute any
dangerous code. The possibility of a banner pointing to a dangerous URL
was very reduced, though, since only administrators can edit this
attribute.
2019-11-13 19:52:15 +01:00
..
account
Use active record translations for labels
2019-10-07 01:56:23 +02:00
admin
Reuse partial to render a banner
2019-11-13 19:52:15 +01:00
budgets
Redirect to referer after destroying an image
2019-11-12 19:28:35 +01:00
comments
Use raw instead of html_safe
2019-10-08 19:10:13 +02:00
communities
Add rubocop spacing rules
2019-09-10 21:04:56 +02:00
custom
dashboard
Remove CKEditor divs
2019-10-25 17:00:18 +02:00
debates
Remove new CSV report generation
2019-11-06 00:04:02 +01:00
devise
Sanitize translations instead of using _html
2019-10-09 19:46:47 +02:00
direct_messages
Use sanitize in translations with links
2019-10-08 18:46:21 +02:00
direct_uploads
Extract ajax upload and destroy_upload actions from images and documents controllers and place them at new controllers to manage direct uploads
2017-09-26 13:55:28 +02:00
documents
Sanitize translations instead of using _html
2019-10-09 19:46:47 +02:00
follows
Use double quotes inside ERB
2019-03-25 14:58:54 +01:00
images
Apply rule to end files with a newline character
2019-09-10 20:02:15 +02:00
kaminari
Remove kaminari_path
2019-10-20 17:26:14 +02:00
layouts
Replace old Spanish text with org name
2019-11-09 19:38:13 +01:00
legislation
Allow create legislation proposals on process draft phase (Merge #3532)
2019-11-13 01:23:59 +01:00
links
Replace single quotes with double quotes
2019-09-10 19:21:03 +02:00
mailer
Extract method to use WYSIWYGSanitizer in views
2019-10-21 21:32:02 +02:00
management
Use relative URLs where possible
2019-10-20 17:26:14 +02:00
map_locations
Simplify generating checkboxes in forms
2019-10-06 19:32:04 +02:00
milestones
Rename methods to add auto links to HTML
2019-10-08 18:46:20 +02:00
moderation
Sanitize descriptions in the views
2019-10-21 21:32:02 +02:00
notifications
Apply rule to end files with a newline character
2019-09-10 20:02:15 +02:00
officing
Remove useless label false parameter in select_tag
2019-10-06 19:32:04 +02:00
organizations/registrations
Sanitize translations instead of using _html
2019-10-09 19:46:47 +02:00
pages
Remove _html suffix from already sanitized texts
2019-10-09 19:46:47 +02:00
polls
Remove duplication in poll permissions
2019-11-09 19:33:02 +01:00
proposal_notifications
Remove _html suffix from already sanitized texts
2019-10-09 19:46:47 +02:00
proposals
Remove new CSV report generation
2019-11-06 00:04:02 +01:00
relationable
Add rubocop spacing rules
2019-09-10 21:04:56 +02:00
shared
Avoid JavaScript execution in banner URLs
2019-11-13 19:52:15 +01:00
stats
Remove consecutive blank lines
2019-09-10 20:02:15 +02:00
topics
Use sanitize in translations with links
2019-10-08 18:46:21 +02:00
users
Replace old Spanish text with org name
2019-11-09 19:38:13 +01:00
valuation
Fix admin permissions for finished budgets
2019-11-06 15:35:12 +01:00
verification
Sanitize translations instead of using _html
2019-10-09 19:46:47 +02:00
welcome
Sanitize descriptions in the views
2019-10-21 21:32:02 +02:00