Mercurial > genshi > mirror
comparison ChangeLog @ 572:af249466c97e stable-0.4.x 0.4.3
Ported [682] to 0.4.x branch.
| author | cmlenz |
|---|---|
| date | Tue, 17 Jul 2007 10:47:21 +0000 |
| parents | 6058b239ebad |
| children | 13244156cf01 |
comparison
equal
deleted
inserted
replaced
| 570:6058b239ebad | 572:af249466c97e |
|---|---|
| 11 it is not available for use through configuration files. | 11 it is not available for use through configuration files. |
| 12 * The I18n filter now extracts messages from gettext functions even inside | 12 * The I18n filter now extracts messages from gettext functions even inside |
| 13 ignored tags (ticket #132). | 13 ignored tags (ticket #132). |
| 14 * The HTML sanitizer now strips any CSS comments in style attributes, which | 14 * The HTML sanitizer now strips any CSS comments in style attributes, which |
| 15 could previously be used to hide malicious property values. | 15 could previously be used to hide malicious property values. |
| 16 * The HTML sanitizer now also removes any HTML comments encountered, as those | |
| 17 may be used to hide malicious payloads targetting a certain "innovative" | |
| 18 browser that goes and interprets the content of specially prepared comments. | |
| 16 * Attribute access in template expressions no longer silently ignores | 19 * Attribute access in template expressions no longer silently ignores |
| 17 exceptions other than `AttributeError` raised in the attribute accessor. | 20 exceptions other than `AttributeError` raised in the attribute accessor. |
| 18 | 21 |
| 19 | 22 |
| 20 Version 0.4.2 | 23 Version 0.4.2 |