pgAdmin 4 commit: Ensure Python escaping matched JS escaping and fix a

From: Dave Page <dpage(at)pgadmin(dot)org>
To: pgadmin-hackers(at)lists(dot)postgresql(dot)org
Subject: pgAdmin 4 commit: Ensure Python escaping matched JS escaping and fix a
Date: 2019-06-21 08:54:05
Message-ID: E1heFJ7-0006c2-Fn@gothos.postgresql.org
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgadmin-hackers

Ensure Python escaping matched JS escaping and fix a minor XSS issue in the Query Tool that required superuser access to trigger. Fixes #4378

Branch
------
master

Details
-------
https://git.postgresql.org/gitweb?p=pgadmin4.git;a=commitdiff;h=ebb5e3fe6542e721c6794bc7074252583350ca41
Author: Aditya Toshniwal <aditya(dot)toshniwal(at)enterprisedb(dot)com>

Modified Files
--------------
docs/en_US/release_notes_4_9.rst | 1 +
web/pgadmin/browser/utils.py | 25 ++++++++++++++++++++++++
web/pgadmin/tools/datagrid/__init__.py | 4 +++-
web/pgadmin/tools/datagrid/static/js/datagrid.js | 2 +-
4 files changed, 30 insertions(+), 2 deletions(-)

Browse pgadmin-hackers by date

  From Date Subject
Next Message Akshay Joshi 2019-06-21 10:29:53 pgAdmin 4 commit: Update message catalogs
Previous Message Dave Page 2019-06-21 08:24:08 Re: change to Docker entrypoint.sh