mirror of
https://github.com/snipe/snipe-it.git
synced 2024-09-20 15:57:41 -07:00
9a224a07ba
* Modified how we do Select2 dynamic drop-down menus to be more secure As noted by the author of select2, the more-secure way of creating rich Select-dropdowns is to use jquery to create HTML snippets and carefully modify text attributes within there. This prevents any XSS from being brought to the page. As a side-effect, the extra escaping that we had to do in all of the internal selectlist calls is now no longer necessary, and has been removed. Rebased and squashed from the original. * Rebuilt all assets, but this still feels like it's too much stuff in here. * Whoops, need to run that in dev, not prod |
||
|---|---|---|
| .. | ||
| Console | ||
| Events | ||
| Exceptions | ||
| Helpers | ||
| Http | ||
| Importer | ||
| Jobs | ||
| LegacyEncrypter | ||
| Listeners | ||
| Models | ||
| Notifications | ||
| Observers | ||
| Policies | ||
| Presenters | ||
| Providers | ||
| Services | ||