Stash doesn't escape HTML in commit messages

XMLWordPrintable

    • Type: Bug
    • Resolution: Duplicate
    • Priority: High
    • None
    • Affects Version/s: None
    • Component/s: Rendering - Markdown Syntax
    • None

      Stash doesn't escape HTML in commit messages at least in pull requests which creates a security risk if people submitting pull requests aren't fully trusted.

            Assignee:
            Unassigned
            Reporter:
            m_gol
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

              Created:
              Updated:
              Resolved: