diff options
| author | GitLab Bot <gitlab-bot@gitlab.com> | 2021-09-01 00:10:43 +0300 |
|---|---|---|
| committer | GitLab Bot <gitlab-bot@gitlab.com> | 2021-09-01 00:10:43 +0300 |
| commit | d9115c777949c14b7e12332f85fe99b100af2aeb (patch) | |
| tree | 34f094a0bdb519787adafa54d58075188a30b7b5 /spec/helpers | |
| parent | 34d6e7c91beed4420759ce5a8e1e9607db8f9c45 (diff) | |
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'spec/helpers')
| -rw-r--r-- | spec/helpers/integrations_helper_spec.rb | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/spec/helpers/integrations_helper_spec.rb b/spec/helpers/integrations_helper_spec.rb index 8e652d2f150..3a7d4d12513 100644 --- a/spec/helpers/integrations_helper_spec.rb +++ b/spec/helpers/integrations_helper_spec.rb @@ -98,4 +98,19 @@ RSpec.describe IntegrationsHelper do end end end + + describe '#jira_issue_breadcrumb_link' do + let(:issue_reference) { nil } + + subject { helper.jira_issue_breadcrumb_link(issue_reference) } + + context 'when issue_reference contains HTML' do + let(:issue_reference) { "<script>alert('XSS')</script>" } + + it 'escapes issue reference' do + is_expected.not_to include(issue_reference) + is_expected.to include(html_escape(issue_reference)) + end + end + end end |