Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
441d2e44b9457817bf9d2e052d160bc2e3effc2a
edx-platform/openedx/core/djangoapps
History
Adeel Khan 298d3554fe Fix templates for XSS code injection via translations 
This would patch all templates (django/mako)
for a possible XSS code injection via
translation files by html escaping them..

LEARNER-4632
2019-06-25 14:22:42 +05:00
..
ace_common
Fix templates for XSS code injection via translations
2019-06-25 14:22:42 +05:00
api_admin
add api access request management command
2019-06-21 15:34:03 -04:00
auth_exchange
INCR-114: Run python-modernize on openedx/core/djangoapps/auth_exchange (#20442)
2019-05-07 11:14:23 -04:00
bookmarks
Merge pull request #20286 from edx/nedbat/sec-367
2019-05-01 08:25:05 -04:00
cache_toolbox
INCR-116: Run python-modernize on openedx/core/djangoapps/cache_toolbox (#20504)
2019-05-10 08:55:42 -04:00
catalog
check curriculum rather than courses for program course membership
2019-06-04 14:06:00 -04:00
ccxcon
Initial start on annotations.
2019-02-19 11:24:21 -05:00
certificates
README for certificates
2019-05-29 02:49:41 -04:00
commerce
REVMI-234 Include user id in jwt sent to ecommerce (#20743)
2019-06-05 10:27:23 -04:00
common_initialization
INCR-119 modernize openedx/core/djangoapps/certificates … (#20418)
2019-05-06 17:04:30 -04:00
common_views
config_model_utils
INCR-119 modernize openedx/core/djangoapps/certificates … (#20418)
2019-05-06 17:04:30 -04:00
content
Update quality threshold counts (#20681)
2019-05-24 08:27:54 -04:00
contentserver
INCR-145 (#20486)
2019-05-09 17:44:45 -04:00
cors_csrf
INCR-146 [Python2 > Python3] (#20488)
2019-05-09 13:17:51 -04:00
course_groups
API support for bulk grade import/export
2019-05-31 09:28:44 -04:00
coursegraph
INCR-149 (#20516)
2019-05-10 11:11:42 -04:00
crawlers
INCR-152: Run python-modernize on openedx/core/djangoapps/crawlers (#20487)
2019-05-09 10:52:31 -04:00
credentials
Update quality threshold counts (#20681)
2019-05-24 08:27:54 -04:00
credit
Strings used in models should always use gettext_lazy.
2019-06-04 18:48:46 +09:30
dark_lang
INCR-154 (#20485)
2019-05-09 11:42:43 -04:00
debug
INCR-243: Make compatible with Python 3.x without breaking Python 2.7 support for openedx/core/djangoapps/models openedx/core/djangoapps/debug (#20532)
2019-05-13 09:29:07 -04:00
django_comment_common
INCR-233 (#20512)
2019-05-15 12:12:46 -04:00
embargo
INCR-155 Modernize openedx/core/djangoapps/video_config (#20408)
2019-05-06 16:43:42 -04:00
enrollments
Revert "Use drf-yasg for Open API documentation"
2019-06-11 16:05:00 -04:00
geoinfo
INCR-225: python-modernize on openedx/core/djangoapps/geoinfo, monkeypatch, plugin_api, and xmodule_django (#20422)
2019-05-07 13:19:14 -04:00
header_control
INCR-206 ran modernize and isort on files (#20464)
2019-05-08 13:32:55 -04:00
heartbeat
Initial README for heartbeat app
2019-04-25 16:00:53 -04:00
lang_pref
INCR-191
2019-04-25 13:51:23 -04:00
models
INCR-243: Make compatible with Python 3.x without breaking Python 2.7 support for openedx/core/djangoapps/models openedx/core/djangoapps/debug (#20532)
2019-05-13 09:29:07 -04:00
monkey_patch
Remove now-unused django_db_models_options.py
2018-06-11 13:43:09 -04:00
oauth_dispatch
REVMI-234 Remove flaky test (#20752)
2019-06-05 15:48:47 -04:00
password_policy
INCR-174
2019-04-24 14:07:32 -05:00
plugin_api
Upgrade to django-pipeline 1.6.14 (#20449)
2019-05-07 16:01:37 -04:00
plugins
INCR-165
2019-04-24 13:38:12 -05:00
profile_images
Update StringIO usage for Python 3 (#20462)
2019-05-08 12:13:22 -04:00
programs
INCR-250: Make compatible with Python 3.x without breaking Python 2.7… (#20534)
2019-06-11 10:17:52 -04:00
safe_sessions
INCR-219: Run modernizer (#20415)
2019-05-07 16:41:53 -04:00
schedules
Fix intermittent unit test failures (#20783)
2019-06-10 14:56:33 -04:00
self_paced
INCR-149 (#20516)
2019-05-10 11:11:42 -04:00
service_status
INCR-191
2019-04-25 13:51:23 -04:00
session_inactivity_timeout
INCR-206 ran modernize and isort on files (#20464)
2019-05-08 13:32:55 -04:00
signals
INCR-174
2019-04-24 14:07:32 -05:00
site_configuration
Update quality threshold counts (#20681)
2019-05-24 08:27:54 -04:00
theming
Clean up theming tests and microsites.
2019-06-14 15:22:33 -04:00
user_api
Remove Remember me button from login page
2019-06-18 17:30:37 +05:00
user_authn
Fix templates for XSS code injection via translations
2019-06-25 14:22:42 +05:00
util
INCR-240 (#20509)
2019-05-10 11:23:05 -04:00
verified_track_content
Added course_id to get_course_cohorts
2019-05-28 10:21:26 -04:00
video_config
modernize video_config
2019-05-06 11:18:57 -04:00
video_pipeline
INCR-161 Run python-modernize on openedx/core/djangoapps/video_pipeline (#20472)
2019-05-09 11:59:01 -04:00
waffle_utils
INCR-163 python-modernize on openedx/core/djangoapps/waffle_utils (#20469)
2019-05-09 11:54:17 -04:00
xmodule_django
INCR-225: python-modernize on openedx/core/djangoapps/geoinfo, monkeypatch, plugin_api, and xmodule_django (#20422)
2019-05-07 13:19:14 -04:00
zendesk_proxy
INCR-159 Run python-modernize on openedx/core/djangoapps/zendesk_proxy (#20474)
2019-05-09 13:39:37 -04:00
__init__.py