Commit message (Collapse) | Author | Files | Lines | ||
---|---|---|---|---|---|
2021-11-29 | Allow whitespace trimming in {{raw}} blocks | René Kijewski | 1 | -0/+10 | |
2021-05-17 | Remove forward-slash escape (#486) | Alex Wennerberg | 1 | -5/+2 | |
This was based off of the OWASP XSS prevention cheat sheet -- https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html#output-encoding-rules-summary However, there isn't really any attack vector based on forward slash alone, and it's being removed in the next version of that document. > There is no proof that escaping forward slash will improve > defense against XSS, if all other special characters are escaped > properly, but it forces developers to use non-standard implementation of > the HTML escaping, what increases the risk of the mistake and makes the > implementation harder. https://github.com/OWASP/CheatSheetSeries/pull/516 | |||||
2021-02-22 | Added option test | vallentin | 1 | -0/+16 | |
2021-01-13 | Added constants test | vallentin | 1 | -0/+30 | |
2021-01-05 | Removed implicit borrowing of literals, calls, and more (fixes #404) | vallentin | 1 | -4/+4 | |
2020-12-02 | Allow paths to start with `::` (#393) | Christian Vallentin | 1 | -0/+9 | |
2020-04-23 | Fix taking references of function arguments (fixes #311) | Dirkjan Ochtman | 1 | -0/+10 | |
2020-03-18 | Fixed clippy warnings | Nathan Lapel | 1 | -0/+2 | |
2020-03-18 | Use _visit_args in var/path calls | Nathan Lapel | 1 | -3/+3 | |
2020-03-18 | Support function calls | Nathan Lapel | 1 | -0/+37 | |
2020-01-29 | Add support for warp | Bjørn Madsen | 1 | -1/+2 | |
2020-01-12 | Support escaping in string literals | Tuomas Siipola | 1 | -0/+13 | |
Do not attempt to parse escape sequences thoroughly. Instead let the Rust compiler to check the string literals and provide nice error messages if necessary. | |||||
2020-01-03 | Support char literals | Tuomas Siipola | 1 | -1/+1 | |
2020-01-02 | Clean up clippy warnings | Dirkjan Ochtman | 1 | -0/+2 | |
2019-11-04 | Fix formatting with cargo fmt | Dirkjan Ochtman | 1 | -1/+4 | |
2019-10-28 | Moved no-receiver size_hint method to a separate trait (#270) | jbg | 1 | -2/+2 | |
2019-10-08 | Add support for boolean literals | Dave Poulter | 1 | -1/+1 | |
2019-04-18 | WIP: Add raw block | Pavel Fokin | 1 | -0/+23 | |
2018-12-08 | Use 2018 edition idioms | Dirkjan Ochtman | 1 | -2/+0 | |
2018-12-08 | Remove unused macro_use attributes | Dirkjan Ochtman | 1 | -1/+0 | |
2018-12-07 | Fix cargo fmt | Juan Aguilar Santillana | 1 | -4/+1 | |
2018-11-11 | Add e2e test for escape | bott | 1 | -0/+16 | |
2018-11-04 | use UFCS in derived code | Yusuke Sasaki | 1 | -0/+12 | |
2018-10-20 | Add test for unescaped variable expressions (see #132) | Qian Linfeng | 1 | -0/+24 | |
2018-10-12 | make `Template::extension()` static | Yusuke Sasaki | 1 | -1/+1 | |
It is useful for calculating the media type without instantiating the context value. | |||||
2018-09-14 | Update formatting for rust 1.29.0 rustfmt | Dirkjan Ochtman | 1 | -2/+8 | |
2018-07-22 | Add Template method to return template extension | Dirkjan Ochtman | 1 | -0/+1 | |
Thanks to Ryan McGrath for the suggestion and initial implementation. | |||||
2018-07-04 | Add test for unit structs (see #101) | Dirkjan Ochtman | 1 | -0/+9 | |
2018-06-23 | Remove accidental debugging cruft | Dirkjan Ochtman | 1 | -1/+1 | |
2018-06-23 | Add test for Index operation | Dirkjan Ochtman | 1 | -0/+16 | |
2018-06-21 | Fix formatting with cargo fmt | Dirkjan Ochtman | 1 | -21/+21 | |
2018-04-27 | Add test for unary - operator | Dirkjan Ochtman | 1 | -0/+13 | |
2018-04-27 | Add test for ! operator (see #83) | Dirkjan Ochtman | 1 | -0/+13 | |
2018-04-17 | Properly handle whitespace around comments (fixes #79) | Dirkjan Ochtman | 1 | -0/+11 | |
2017-11-21 | Apply suggestions from rustfmt to improve style | Dirkjan Ochtman | 1 | -7/+8 | |
2017-10-22 | Make empty string literals work | Dirkjan Ochtman | 1 | -2/+2 | |
2017-10-20 | Add support for array literals (fixes #59) | Dirkjan Ochtman | 1 | -0/+11 | |
2017-10-04 | Add test for path expressions (see #56) | Dirkjan Ochtman | 1 | -0/+18 | |
2017-09-10 | Add support for tuple indexing in templates | Lars Erik Rosengren | 1 | -0/+12 | |
2017-09-07 | Move JSON test into filters test module | Dirkjan Ochtman | 1 | -28/+1 | |
2017-09-07 | Move escaping tests into a separate module | Dirkjan Ochtman | 1 | -52/+0 | |
2017-09-07 | Add test case for inferred escape mode | Dirkjan Ochtman | 1 | -0/+13 | |
2017-09-07 | Make ext attribute mandatory for source-specified templates | Dirkjan Ochtman | 1 | -3/+3 | |
2017-09-05 | Add some tests for escaping functionality | Dirkjan Ochtman | 1 | -0/+39 | |
2017-08-23 | Adding optional json filter | Anthony Nowell | 1 | -4/+18 | |
2017-08-10 | Implement Display for all Templates | Dirkjan Ochtman | 1 | -0/+13 | |
2017-08-10 | Propagate format errors and rename `render_to()` to `render_into()` | Dirkjan Ochtman | 1 | -14/+14 | |
2017-08-02 | Add test that starts with a single brace (see #24) | Dirkjan Ochtman | 1 | -0/+14 | |
2017-05-26 | Add test for basic chained attributes | Dirkjan Ochtman | 1 | -0/+19 | |
2017-03-08 | Remove type parameter defaults from impls (fixes #12) | Dirkjan Ochtman | 1 | -1/+2 | |