Sanitize for network graph

randx
1 parent ae1d9fb4
Showing 1 changed file with 3 additions and 1 deletions Show diff stats
lib/gitlab/graph_commit.rb
@@ -5,6 +5,8 @@ module Gitlab
     attr_accessor :time, :space
     attr_accessor :refs
  
+    include ActionView::Helpers::SanitizeHelper
+
     def self.to_graph(project)
       @repo = project.repo
       commits = Grit::Commit.find_all(@repo, nil, {max_count: 650})
@@ -164,7 +166,7 @@ module Gitlab
       h[:refs]    = refs.collect{|r|r.name}.join(" ") unless refs.nil?
       h[:id]      = sha
       h[:date]    = date
-      h[:message] = Gitlab::Encode.utf8(message)
+      h[:message] = sanitize(Gitlab::Encode.utf8(message))
       h[:login]   = author.email
       h
     end
...	...	@@ -5,6 +5,8 @@ module Gitlab
5	5	attr_accessor :time, :space
6	6	attr_accessor :refs
7	7
	8	+ include ActionView::Helpers::SanitizeHelper
	9	+
8	10	def self.to_graph(project)
9	11	@repo = project.repo
10	12	commits = Grit::Commit.find_all(@repo, nil, {max_count: 650})
...	...	@@ -164,7 +166,7 @@ module Gitlab
164	166	h[:refs] = refs.collect{\|r\|r.name}.join(" ") unless refs.nil?
165	167	h[:id] = sha
166	168	h[:date] = date
167		- h[:message] = Gitlab::Encode.utf8(message)
	169	+ h[:message] = sanitize(Gitlab::Encode.utf8(message))
168	170	h[:login] = author.email
169	171	h
170	172	end
...	...