mirror of
https://github.com/snipe/snipe-it.git
synced 2024-09-21 16:27:35 -07:00
9a224a07ba
* Modified how we do Select2 dynamic drop-down menus to be more secure As noted by the author of select2, the more-secure way of creating rich Select-dropdowns is to use jquery to create HTML snippets and carefully modify text attributes within there. This prevents any XSS from being brought to the page. As a side-effect, the extra escaping that we had to do in all of the internal selectlist calls is now no longer necessary, and has been removed. Rebased and squashed from the original. * Rebuilt all assets, but this still feels like it's too much stuff in here. * Whoops, need to run that in dev, not prod |
||
|---|---|---|
| .. | ||
| css | ||
| js | ||
| less | ||