Artifact [1e7e10c808]
Not logged in
HomeTimelineBranchesTagsTicketsWikiLogin
Download Hex Parsed

Artifact 1e7e10c80892e085ba4ef9b4133127e8da432e07:

Ticket change [1e7e10c808] - New ticket [83e9e0016b] html tags are apparently not escaped or converted when presented via timeline.rss. by anonymous 2010-01-10 00:46:38. 
D 2010-01-10T00:46:38
J comment A\sfossil\scommit\swith\sa\scomment\ssuch\sas\sthe\sfollowing,\r\n\r\n---\r\nNote\sthat\scouchdb\sdocument\sfield\snames\sare\snow\scontained\sin\spriv/project.conf\sfile.\sThe\sstrings\swithin\sthe\s<<>>\sare\sthe\snames\swhich\sshould\sbe\sused\sin\shtml\sdocuments,\se.g.\s<<"_id">>\sor\s<<"iata_code">>\sand\sthe\sname\sto\sPOST\sfrom\sa\sform\swould\sbe\s"_id"\sor\s"iata_code"\srespectively.\r\n---\r\n\r\nwill\sbreak\smy\sRSS\sreader\swhen\sI\sread\stimeline.rss\s;\sthough\sI\suse\sliferea\son\sGNU/Linux,\sI\sbelieve\s(though\sdo\snot\sknow)\sthat\sillegal\sXML\sis\sbeing\spresented\sby\stimeline.rss\sby\snot\sescaping\sor\sencoding\shtml\stags\sand\scharacters.\s\sFor\sthe\sabove\scomment,\sliferea\ssays\sthat\s<<>>\sis\san\sinvalid\selement\sname.\s\sI\scan\seasily\scause\sbreakage\sby\ssimply\sadding\sa\scommit\scomment\ssuch\sas\r\n\r\n---\r\nbugfix,\sadded\sthe\sopening\s&lt;h1&gt;\stag\sin\swidget.html\r\n---\r\n\r\nin\swhich\scase\sthe\sRSS\sreader\scomplains\sabout\san\sopen\stag\swith\sno\sclosing\stag.\s\sI\sthen\shave\sto\swait\s20\snew\scommits\sfor\sthe\s"bad"\scomment\sto\sroll\sout\sof\sthe\stimeline.rss\sdata\sbefore\sI\scan\sagain\sread\sthe\sfossil\sfeed\sin\smy\sRSS\sreader.\r\n\r\nNOTE\sthat\sI\swrote\sthe\sabove\stag\susing\sencoded\sless\sthan\sand\sgreater\sthan\ssigns\sso\sthat\sI\scould\screate\sthis\sbug\sreport.\s\sI\scannot\sexpect\smy\sfossil\susers\s(nor\smyself)\sto\sremember\sto\swrite\sout\sampersand\sg\st\s;\setc.\swhenver\san\shtml\stag\sis\sreferenced\sin\sa\scommit\scomment.\r\n\r\nClick\sedit\sfor\sthis\sreport\sto\ssee\sthe\sactual\stext\sto\swhich\sI\sam\sreferring\sregarding\s"encoded\sless\sthan\sand\sgreater\sthan\ssigns".\r\n\r\nMy\sfeature\srequest\sis\sthat\stimeline.rss\spresent\svalid\sparseable\sXML\satom\sor\sRSS\sdata.
J foundin current
J private_contact 9271333c277938acfba7db515d7eb25b37a30122
J severity Important
J status Open
J title html\stags\sare\sapparently\snot\sescaped\sor\sconverted\swhen\spresented\svia\stimeline.rss
J type Feature_Request
K 83e9e0016b65721084ef29b466c1a7ea59ea7d7e
U anonymous
Z 29b13e56db75fc820ea08d5fa397195e
Fossil version [4df919803b] 2020-05-25 23:23:49