Use GlSprintf instead of v-html for security scanning notes (!34136) · Merge requests · GitLab.org / GitLab

Daniel Tian requested to merge 216873-use-glsprintf-for-notes into master Jun 09, 2020

What does this MR do?

When a pipeline is run, there will be a security tab for the pipeline:

Clicking on an item in the list will open a modal that shows details about the security vulnerability. If an issue and/or merge request is created for the vulnerability, it will show notes that link to the issue/MR:

Those notes are still using v-html to show its contents. This MR changes them to use GlSprintf instead.

Does this MR meet the acceptance criteria?

Conformity

[-] Changelog entry
[-] Documentation (if required)
Code review guidelines
Merge request performance guidelines
[-] Style guides
[-] Database guides
[-] Separation of EE specific content

Availability and Testing

Review and add/update tests for this feature/bug. Consider all test levels. See the Test Planning Process.
[-] Tested in all supported browsers
[-] Informed Infrastructure department of a default or new setting change, if applicable per definition of done

Edited Jun 09, 2020 by Daniel Tian

Use GlSprintf instead of v-html for security scanning notes

What does this MR do?

Does this MR meet the acceptance criteria?

Conformity

Availability and Testing

Merge request reports