Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
be4a99613207c52e7ee71de859611f2a194e1a64
edx-platform/openedx/core/djangoapps
History
David Ormsbee 53c25b9cd8 fix: sanitize HTML for course overview & sidebar 
The "overview" and "about_sidebar_html" fields in the
CoursewareInformation view (/api/courseware/course/{courseId}) were
returning unsanitized HTML and relying on the client to sanitize it.
This commit shifts that work to the server side (clean_dangerous_html)
to remove potentially dangerous tags when generating the response. The
source of this data is modified in the "Settings and Details" section
of a course in Studio.
2025-12-17 11:02:12 -05:00
..
ace_common
refactor: flatten FEATURES dictionary with backward compatible proxy
2025-09-09 14:11:39 -06:00
agreements
fix: Correct serializer model reference.
2025-08-12 13:59:40 -04:00
api_admin
build: add support for Python 3.12 (#37160)
2025-12-15 12:12:29 +05:00
auth_exchange
feat: Drop the ENABLE_OAUTH2_PROVIDER flag.
2025-11-03 12:54:06 -05:00
bookmarks
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
cache_toolbox
feat!: Flip Studio MFE Waffle Flags to be On-By-Default (#36495)
2025-04-24 12:34:35 -04:00
catalog
build: add support for Python 3.12 (#37160)
2025-12-15 12:12:29 +05:00
ccxcon
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
commerce
feat: renamed DeprecatedRestApiClient from EdxRestApiClient (#33916)
2023-12-12 13:32:09 -05:00
common_initialization
common_views
refactor: remove prefer_xmodules
2022-11-16 13:08:22 +01:00
config_model_utils
content
feat: remove "experimental" param from reindex_studio (#37546)
2025-10-29 13:52:06 -07:00
content_libraries
build: add support for Python 3.12 (#37160)
2025-12-15 12:12:29 +05:00
content_staging
feat: copy/paste containers (units/subsections/sections) in Studio (#37008)
2025-08-14 08:06:35 -07:00
content_tagging
[FC-0099] feat: Upgrade Python dependency openedx-authz (#37652)
2025-11-19 14:34:20 -05:00
contentserver
Merge commit from fork
2025-05-21 14:14:51 -04:00
cookie_metadata
fix!: Remove deprecated CookieNameChange middleware (#36815)
2025-06-25 19:38:43 -04:00
cors_csrf
cleanup references of python 2 & <3.11 (#35799)
2024-11-15 16:58:20 +05:00
course_apps
chore: cleanup
2024-05-25 18:08:25 +03:30
course_date_signals
fix: fix django4 deprecation warnings (#32978)
2023-08-16 17:07:09 +05:00
course_groups
fix: fix pycodestyle error
2025-10-13 22:53:37 +05:00
course_live
chore: Add missing PII annotations, update safelist
2024-11-05 12:58:36 -05:00
courseware_api
fix: sanitize HTML for course overview & sidebar
2025-12-17 11:02:12 -05:00
crawlers
cleanup references of python 2 & <3.11 (#35799)
2024-11-15 16:58:20 +05:00
credentials
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
credit
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
dark_lang
fix: fix middleware get_response parameter deprecation warning (#33067)
2023-08-22 15:52:30 +05:00
debug
chore: replace bleach with nh3
2024-05-28 13:02:16 +05:00
discussions
feat: remove last cs_comments service references (#37503)
2025-10-23 10:48:39 -04:00
django_comment_common
feat: added unfollow behaviour in discussion notification (#37690)
2025-12-08 12:14:00 +05:00
embargo
Hraza/add embargo restricted country (#36398)
2025-03-19 12:22:45 +05:00
enrollments
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
external_user_ids
fix: Convert UUIDField columns to uuid type for MariaDB (#37494)
2025-10-20 10:32:44 -04:00
geoinfo
fix: handle countries not recognized by geoip2 DB
2024-02-07 17:14:39 +01:00
header_control
fix: fix middleware get_response parameter deprecation warning (#33067)
2023-08-22 15:52:30 +05:00
heartbeat
fix: fixed django40 warnings (#29655)
2022-03-02 16:08:04 +05:00
lang_pref
fix: test failure in test_all_languages (#37201)
2025-08-13 22:18:41 +05:00
models
feat: get migrations info REST-API added [FC-0112] (#37558)
2025-11-14 17:38:40 +00:00
monkey_patch
fix: remove custom startup to fix dev reloading
2025-02-28 23:16:05 -05:00
notifications
chore: updated pref settings for misc notification types (#37733)
2025-12-08 13:34:41 +00:00
oauth_dispatch
feat: Drop the ENABLE_OAUTH2_PROVIDER flag.
2025-11-03 12:54:06 -05:00
olx_rest_api
Support static assets when copy/pasting between courses and libraries (#35668)
2024-10-23 09:21:27 -04:00
password_policy
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
plugin_api
plugins
chore: pull_translations: use less Makefile commands and move it to Python
2024-02-19 20:02:18 +03:00
profile_images
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
programs
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
safe_sessions
chore: fixed typos
2025-12-11 11:46:44 -05:00
schedules
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
service_status
fix: Add missing code-owner decorators for Celery (#33172)
2023-09-05 15:16:14 +00:00
session_inactivity_timeout
fix!: session ID stability while maintaining inactivity timeout (#36896)
2025-08-21 23:15:12 -04:00
signals
feat: rework idv cert trigger (#35580)
2024-10-04 12:58:15 -04:00
site_configuration
fix: removed redacted import
2025-06-03 17:24:24 -04:00
staticfiles
build: move collectstatic ignore patterns into configuration (#31934)
2023-04-21 08:26:48 -04:00
system_wide_roles
theming
chore: remove deprecated DEFAULT_FILE_STORAGE and STATICFILES_STORAGE settings (#37002)
2025-09-05 17:52:33 -04:00
user_api
chore: fixed typos
2025-12-11 11:46:44 -05:00
user_authn
chore: fixed typos
2025-12-11 11:46:44 -05:00
util
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
verified_track_content
chore: Replace pytz with zoneinfo for UTC handling - Part 1 (#37523)
2025-10-28 16:23:22 -04:00
video_config
chore: move get_transcript method to video service (#37635)
2025-12-05 17:53:10 +05:00
video_pipeline
fix: fix github url strings (org edx -> openedx)
2022-09-15 14:52:28 -04:00
waffle_utils
feat: Allow specifying a version when loading a v2 XBlock (#35626)
2024-10-16 08:43:20 -07:00
xblock
chore: move get_transcript method to video service (#37635)
2025-12-05 17:53:10 +05:00
xmodule_django
zendesk_proxy
feat: Financial assistance form learner privacy update (#33808)
2023-12-08 10:59:45 -05:00
__init__.py