[
https://issues.apache.org/jira/browse/OFBIZ-12366?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17443377#comment-17443377
]
ASF subversion and git services commented on OFBIZ-12366:
---------------------------------------------------------
Commit 5fbd11e75ec1594f1cf4e1eb41699d94c2c9dcee in ofbiz-framework's branch
refs/heads/release18.12 from Jacques Le Roux
[ https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=5fbd11e ]
Improved: Fix OFBiz specific Javascript security issues reported by GH CodeQL
(OFBIZ-12366)
Fixes OfbizUtil.js and fieldlookup.js by using dompurify
Also adds in .gitignore
/themes/common-theme/webapp/common/js/node_modules/
/docs/asciidoc/images/
as I have enough to see them when I switch between branches
> Fix OFBiz speficic Javascript securiy issues reported by GH CodeQL
> ------------------------------------------------------------------
>
> Key: OFBIZ-12366
> URL: https://issues.apache.org/jira/browse/OFBIZ-12366
> Project: OFBiz
> Issue Type: Improvement
> Affects Versions: Trunk
> Reporter: Jacques Le Roux
> Assignee: Jacques Le Roux
> Priority: Minor
> Fix For: Upcoming Branch
>
>
> Since we have no external security reports for those, it's only an
> improvement but could be backported
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
