diff options
| author | Yorick Peterse <yorickpeterse@gmail.com> | 2019-01-25 19:43:36 +0300 |
|---|---|---|
| committer | Yorick Peterse <yorickpeterse@gmail.com> | 2019-01-25 19:43:39 +0300 |
| commit | 9a9889ec596fe9bd9e1f455961916b6ed29f8e8d (patch) | |
| tree | ea9cfe2fffe6e979ad277da3bbc530a7575a5e02 /changelogs | |
| parent | 7707449ab0e54042bb6769a139db827aa92f2ec5 (diff) | |
Merge branch 'security-11-6-22076-sanitize-url-in-names' into 'security-11-6'
[11.6] Sanitize user full name to clean up any URL to prevent mail clients from auto-linking URLs
See merge request gitlab/gitlabhq!2829
(cherry picked from commit 7dd747b8ce1f59672c530af25237bdf661cb480a)
61fc453c Add `sanitize_name` helper to sanitize URLs in user full name
e5cd214e Use `sanitize_name` to sanitize URL in user full name
1b000d5a Add changelog entry
Diffstat (limited to 'changelogs')
| -rw-r--r-- | changelogs/unreleased/security-11-6-22076-sanitize-url-in-names.yml | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/changelogs/unreleased/security-11-6-22076-sanitize-url-in-names.yml b/changelogs/unreleased/security-11-6-22076-sanitize-url-in-names.yml new file mode 100644 index 00000000000..f28ab554660 --- /dev/null +++ b/changelogs/unreleased/security-11-6-22076-sanitize-url-in-names.yml @@ -0,0 +1,6 @@ +--- +title: Sanitize user full name to clean up any URL to prevent mail clients from auto-linking + URLs +merge_request: 2829 +author: +type: security |