Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 6a23de8fae095e89a51361b5ff684fea33b254ec
https://github.com/WebKit/WebKit/commit/6a23de8fae095e89a51361b5ff684fea33b254ec
Author: Ling Ho <[email protected]>
Date: 2026-03-20 (Fri, 20 Mar 2026)
Changed paths:
M Websites/bugs.webkit.org/show_bug.cgi
Log Message:
-----------
[webkit.org] Content Spoofing / Text injection
https://bugs.webkit.org/show_bug.cgi?id=310377
rdar://159668969
Reviewed by Alexey Proskuryakov.
Reject invalid bug IDs/aliases early to prevent content spoofing when
error message is displayed.
Valid input is either a numeric bug ID or a bug alias
(max 40 chars, no spaces/commas).
Anything else is rejected without reflecting the input.
* Websites/bugs.webkit.org/show_bug.cgi:
Canonical link: https://commits.webkit.org/309639@main
To unsubscribe from these emails, change your notification settings at
https://github.com/WebKit/WebKit/settings/notifications
