Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Remove authors from Cargo metadata (see RFC 3052) | Dirkjan Ochtman | 2021-11-24 | 1 | -1/+0 |
| | |||||
* | Bump version numbers in anticipation of beta release | Dirkjan Ochtman | 2021-08-21 | 1 | -1/+1 |
| | |||||
* | Stop eliding lifetimes in paths | Dirkjan Ochtman | 2021-07-01 | 2 | -1/+2 |
| | |||||
* | Remove forward-slash escape (#486) | Alex Wennerberg | 2021-05-17 | 1 | -1/+0 |
| | | | | | | | | | | | | | | | This was based off of the OWASP XSS prevention cheat sheet -- https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html#output-encoding-rules-summary However, there isn't really any attack vector based on forward slash alone, and it's being removed in the next version of that document. > There is no proof that escaping forward slash will improve > defense against XSS, if all other special characters are escaped > properly, but it forces developers to use non-standard implementation of > the HTML escaping, what increases the risk of the mistake and makes the > implementation harder. https://github.com/OWASP/CheatSheetSeries/pull/516 | ||||
* | Add no_std support to askama_escape | Wim Looman | 2021-01-15 | 1 | -3/+10 |
| | |||||
* | Add askama_escape README to crate metadata | Dirkjan Ochtman | 2020-06-30 | 1 | -1/+2 |
| | |||||
* | Add README files for subcrates | Dirkjan Ochtman | 2020-06-30 | 1 | -0/+9 |
| | |||||
* | Bump version numbers | Dirkjan Ochtman | 2020-06-30 | 1 | -1/+1 |
| | |||||
* | Add license files to each crate (fixes #339) | Dirkjan Ochtman | 2020-06-30 | 2 | -0/+2 |
| | |||||
* | Update `EscapeWriter` HTML implementation to not output empty strings | Ciprian Dorin Craciun | 2020-05-24 | 1 | -1/+5 |
| | |||||
* | Remove obsolete CI badges | Dirkjan Ochtman | 2020-01-15 | 1 | -2/+0 |
| | |||||
* | Bump version numbers to 0.9.0 | Dirkjan Ochtman | 2020-01-15 | 1 | -1/+1 |
| | |||||
* | Update criterion requirement from 0.2 to 0.3 | dependabot-preview[bot] | 2019-08-26 | 1 | -1/+1 |
| | | | | | | | | Updates the requirements on [criterion](https://github.com/bheisler/criterion.rs) to permit the latest version. - [Release notes](https://github.com/bheisler/criterion.rs/releases) - [Changelog](https://github.com/bheisler/criterion.rs/blob/master/CHANGELOG.md) - [Commits](https://github.com/bheisler/criterion.rs/compare/0.2.0...0.3.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> | ||||
* | Update formatting | Dirkjan Ochtman | 2019-07-25 | 1 | -4/+1 |
| | |||||
* | Change askama_escape to require UTF-8 strings | Ram Kaniyur | 2019-06-14 | 1 | -24/+25 |
| | |||||
* | Bump versions in anticipation of 0.8.0 release | Dirkjan Ochtman | 2019-01-17 | 1 | -1/+1 |
| | |||||
* | Specify a trait that handles the output format's escaping | Dirkjan Ochtman | 2019-01-12 | 2 | -61/+114 |
| | |||||
* | Slightly simplify escaping code | Dirkjan Ochtman | 2019-01-12 | 1 | -19/+21 |
| | |||||
* | Improved rendering time (#190) | yossyJ | 2019-01-06 | 1 | -1/+23 |
| | | | | | | * Improved rendering time * Fix useless codes | ||||
* | Use 2018 edition idioms | Dirkjan Ochtman | 2018-12-08 | 2 | -4/+3 |
| | |||||
* | Upgrade to 2018 edition | Dirkjan Ochtman | 2018-12-08 | 1 | -0/+1 |
| | |||||
* | Move escaping benchmarks into askama_escape crate | Dirkjan Ochtman | 2018-11-14 | 2 | -0/+85 |
| | |||||
* | Tweak metadata for new askama_escape crate | Dirkjan Ochtman | 2018-11-07 | 1 | -2/+9 |
| | |||||
* | Clean up unused features | Dirkjan Ochtman | 2018-11-07 | 1 | -7/+0 |
| | |||||
* | Create askama_escape crate | bott | 2018-11-07 | 2 | -0/+116 |