Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove @escapeNotVerified from documentation #12639

Merged
merged 1 commit into from
Dec 12, 2017
Merged

Remove @escapeNotVerified from documentation #12639

merged 1 commit into from
Dec 12, 2017

Conversation

mzeis
Copy link
Contributor

@mzeis mzeis commented Dec 11, 2017

The inline documentation of the static test for XSS vulnerabilities doesn't reflect that @escapeNotVerified is disallowed in >= 2.2.

Description

Update the comment to reflect the documentation (compare 2.1 and 2.2).

Fixed Issues (if relevant)

No issue here.

Manual testing scenarios

  1. Compare the documentation in the code with the documentation in devdocs.

Contribution checklist

  • Pull request has a meaningful description of its purpose
  • All commits are accompanied by meaningful commit messages
  • All new or changed code is covered with unit/integration tests (if applicable)
  • All automated tests passed successfully (all builds on Travis CI are green)

@mzeis
Remove @escapeNotVerified from documentation
93ec6ea 
As `@escapeNotVerified` must not be used from 2.2 going onwards (also compare [2.1](http://devdocs.magento.com/guides/v2.1/frontend-dev-guide/templates/template-security.html#Static-Test) and [2.2](http://devdocs.magento.com/guides/v2.2/frontend-dev-guide/templates/template-security.html) documentation), the inline documentation for this test has to be updated.
@osrecio osrecio self-assigned this Dec 11, 2017
@osrecio osrecio added this to the December 2017 milestone Dec 11, 2017
@osrecio
Copy link
Member

osrecio commented Dec 11, 2017

Thanks for your contribution @mzeis !
I'm working on it to process ASAP

@osrecio osrecio self-requested a review December 11, 2017 22:50
@magento-team magento-team merged commit 93ec6ea into 2.2-develop Dec 12, 2017
magento-team pushed a commit that referenced this pull request Dec 12, 2017
MAGETWO-85520: Remove @escapeNotVerified from documentation #12639
35b887d
magento-team pushed a commit that referenced this pull request Dec 12, 2017
@ishakhsuvarov
Merge pull request #1833 from magento-engcom/2.2-develop-prs
5f763a9 
EngCom] Public Pull Requests - 2.2-develop
 - MAGETWO-85520: Remove @escapenotverified from documentation #12639
 - MAGETWO-85317: 12526: Currency change, Bank Transfer but checkout page shows "Your credit card will be charged for" #993
 - MAGETWO-85298: 8011: Strip Tags from attribute. #968
 - MAGETWO-85294: 12535: Product change sku via repository. #984
 - MAGETWO-85274: Update CrontabManager.php #12610
 - MAGETWO-84994: 8862: Can't emptying values by magento 2 api #916
@okorshenko okorshenko deleted the mzeis-patch-1 branch December 13, 2017 08:12
@tmotyl tmotyl mentioned this pull request Sep 4, 2018
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@osrecio osrecio osrecio approved these changes

Assignees

@osrecio osrecio

Labels
Progress: accept Release Line: 2.2
Projects
None yet
Milestone
December 2017
Development

Successfully merging this pull request may close these issues.
3 participants
@mzeis @osrecio @magento-team