Author: John Keeping <john@keeping.me.uk>
ui-refs: escape HTML chars in author and tagger names Everywhere else we use html_txt to escape any special characters in these variables. Do so here as well. Signed-off-by: John Keeping <john@keeping.me.uk>
ui-refs.c | 4 ++--
diff --git a/ui-refs.c b/ui-refs.c index 20c91e3c2401d7da4d6fa3c634623ef60f71e5fe..c97b0c62924cc08c1e54bbcb4958d8c5898abb1e 100644 --- a/ui-refs.c +++ b/ui-refs.c @@ -155,9 +155,9 @@ cgit_object_link(obj); html("</td><td>"); if (info) { if (info->tagger) - html(info->tagger); + html_txt(info->tagger); } else if (ref->object->type == OBJ_COMMIT) { - html(ref->commit->author); + html_txt(ref->commit->author); } html("</td><td colspan='2'>"); if (info) {