|
|
35c342a3e3
|
Fixed handling for SMIRKS/SMARTS, adjusted test values as they are now cleaned, refactored logic for object update
|
2025-11-11 10:09:22 +01:00 |
|
|
|
db9036ce72
|
Merge branch 'develop' into fix/xss
|
2025-11-11 21:07:54 +13:00 |
|
|
|
01a20e438d
|
readd templatetags.py
|
2025-11-07 09:52:18 +13:00 |
|
|
|
654707e6b5
|
removed envipytags.py and moved name cleaning to before default name assignment
|
2025-11-07 09:42:21 +13:00 |
|
|
|
c88b0ff3e7
|
pyproject merge and uv merge
|
2025-11-07 08:49:56 +13:00 |
|
|
|
4246460f91
|
Merge remote-tracking branch 'origin/develop' into fix/xss
# Conflicts:
# pyproject.toml
# uv.lock
|
2025-11-07 08:49:10 +13:00 |
|
|
|
44b646e58a
|
Merge remote-tracking branch 'origin/develop' into fix/xss
# Conflicts:
# templates/modals/collections/new_model_modal.html
|
2025-11-07 08:34:33 +13:00 |
|
|
|
2194b097ae
|
remove 'a' from allowed html tags
|
2025-11-06 10:33:22 +13:00 |
|
|
|
4524b8fdf3
|
moved cleaning to create where possible. Changed nh_safe to safe as we assume everything was cleaned in the first place
|
2025-11-06 09:46:30 +13:00 |
|
|
|
c663eaf7bd
|
comment
|
2025-10-22 10:55:49 +13:00 |
|
|
|
ec0fc8cdc1
|
add error for username/email containing html. Removed checks for SMILES/SMARTS. Updated html to use the nh_safe template tag. #72
|
2025-10-22 10:47:35 +13:00 |
|
|
|
61346c4097
|
nh3 clean is now used on all free-text fields to ensure only approved html will be saved to the database. #72
|
2025-10-21 10:09:10 +13:00 |
|
|
|
43bce8a4e1
|
added nh_safe filter in envipytags.py and updated some of the existing 'safe' to 'nh_safe'
|
2025-10-21 09:10:28 +13:00 |
|
|
|
8d955d685c
|
fixed XSS attack on pathway description and on scenario additional information fields. #72
|
2025-10-15 15:13:10 +13:00 |
|
|
|
17744294cc
|
start towards #72. Added nh3 and fixed package description XSS attack
|
2025-10-15 12:24:36 +13:00 |
|
