Jens Krämer
Jens Krämer
A recent fix in Redmine's WikiController (http://www.redmine.org/issues/31334) broke updating wiki pages with the tagging plugin installed. This patch avoids the situation by moving the tag parsing into a safe_attribute setter...
- makes no sense and results in an NaN error further down - happened when rendering the bullets for HTML like ` some text `
the footnote macro currently does not escape the description argument, which allows a malicious user to insert any javascript code into a page: ~~~ {{fn(word, alert('foobar');)}} ~~~
This PR addresses a few potential security problems due to usage of `raw` and lack of javascript escaping: - replaces all usages of the `raw` helper in views with safer...
This can easily happen e.g. if it would create a circular dependency, and in this case, the user is left with a review he cannot save, without an error message....
Few refactorings in controllers / models. Likely I'll be adding more here soon. - There is no point in using `unloadable` in Redmine plugins nowadays. - `require_dependency` should only be...
Redmine 4 will upgrade to Rails 5, where alias_method_chain is not available anymore. This PR (based on current master) replaces it with prepend / a call to super. Also I...
### Bug description I have successfully paired two Tuya compatible switches (the brand is Zemismart) that show the problem that whenever I toggle one gang in HA, all gangs get...
simply set collectd master ip as node['collectd']['master']['ip']
this fixes issue #20 by adding the predefined tracker ids to Tracker's safe_attributes. Also refactored the patch to use prepend while I was at it.