aboutsummaryrefslogtreecommitdiffhomepage
path: root/tpl/dailyrss.html
Commit message (Collapse)AuthorAgeFilesLines
* Working on shaarli/Shaarli#224ArthurHoaro2015-06-231-3/+3
| | | | | | | | | | | | I reviewed character escaping everywhere with the following ideas: * use a single common function to escape user data: `escape` using `htmlspecialchars`. * sanitize fields in `index.php` after reading them from datastore and before sending them to templates. It means no escaping function in Twig templates. 2 reasons: * it reduces risks of security issue for future user made templates * more readable templates * sanitize user configuration fields after loading them.
* Fix php error in daily RSSnodiscc2015-03-311-1/+1
| | | | | Use of undefined constant htmlspecialchars - assumed 'htmlspecialchars' in /var/www/links/tmp/dailyrss.* Thanks @alexisju in https://github.com/shaarli/Shaarli/commit/bec18701801cc140d760c261dd115fda1507a0dd
* Define date format in templates instead of index.php.ArthurHoaro2015-03-311-1/+1
|
* Initial commit (version 0.0.40 beta)v0.0.40betaSébastien SAUVAGE2013-02-261-0/+8