Mercurial > genshi > mirror

diff ChangeLog @ 556:0d98569eaced trunk

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
The HTML sanitizer now strips any CSS comments in style attributes, which could previously be used to hide malicious property values.
author cmlenz
date Tue, 03 Jul 2007 20:29:07 +0000
parents 35dababa28d6
children c17342ef9efb acf7c5ee36e7
line wrap: on
line diff
--- a/ChangeLog
+++ b/ChangeLog
@@ -32,6 +32,8 @@
    it is not available for use through configuration files.
  * The I18n filter now extracts messages from gettext functions even inside
    ignored tags (ticket #132).
+ * The HTML sanitizer now strips any CSS comments in style attributes, which
+   could previously be used to hide malicious property values.
 
 
 Version 0.4.2
Copyright (C) 2012-2017 Edgewall Software