BigW Consortium Gitlab
Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
G
gitlab-ce
Project
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
Registry
Registry
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Commits
Issue Boards
Open sidebar
Forest Godfrey
gitlab-ce
Commits
c0873f94
Commit
c0873f94
authored
Mar 15, 2017
by
Jacob Schatz
Committed by
DJ Mountney
Mar 17, 2017
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Merge branch 'fix-links-target-blank' into 'security'
Adds rel="noopener noreferrer" to all links with target="_blank" See merge request !2071
parent
7d127840
Hide whitespace changes
Inline
Side-by-side
Showing
31 changed files
with
39 additions
and
38 deletions
+39
-38
environment_external_url.js
...ripts/environments/components/environment_external_url.js
+1
-1
merge_request_widget.js
app/assets/javascripts/merge_request_widget.js
+2
-2
commits_helper.rb
app/helpers/commits_helper.rb
+1
-1
import_helper.rb
app/helpers/import_helper.rb
+1
-1
_form.html.haml
app/views/admin/appearances/_form.html.haml
+1
-1
_form.html.haml
app/views/admin/application_settings/_form.html.haml
+1
-1
_note.html.haml
app/views/events/event/_note.html.haml
+1
-1
index.html.haml
app/views/help/index.html.haml
+1
-1
status.html.haml
app/views/import/bitbucket/status.html.haml
+3
-3
status.html.haml
app/views/import/gitlab/status.html.haml
+1
-1
new.html.haml
app/views/import/google_code/new.html.haml
+1
-1
status.html.haml
app/views/import/google_code/status.html.haml
+3
-3
index.html.haml
app/views/koding/index.html.haml
+1
-1
show.html.haml
app/views/profiles/show.html.haml
+1
-1
_image.html.haml
app/views/projects/blob/_image.html.haml
+1
-1
_text.html.haml
app/views/projects/blob/_text.html.haml
+1
-1
edit.html.haml
app/views/projects/blob/edit.html.haml
+1
-1
_koding.html.haml
app/views/projects/buttons/_koding.html.haml
+1
-1
_overview.html.haml
app/views/projects/cycle_analytics/_overview.html.haml
+1
-1
_external_url.html.haml
app/views/projects/environments/_external_url.html.haml
+1
-1
_show.html.haml
app/views/projects/merge_requests/_show.html.haml
+1
-1
_how_to_merge.html.haml
...iews/projects/merge_requests/show/_how_to_merge.html.haml
+1
-1
_detailed_help.html.haml
...rvices/mattermost_slash_commands/_detailed_help.html.haml
+2
-2
_help.html.haml
...ojects/services/mattermost_slash_commands/_help.html.haml
+1
-1
_help.html.haml
...ws/projects/services/slack_slash_commands/_help.html.haml
+2
-2
show.html.haml
app/views/projects/snippets/show.html.haml
+1
-1
_form.html.haml
app/views/shared/issuable/_form.html.haml
+1
-1
show.html.haml
app/views/snippets/show.html.haml
+1
-1
show.html.haml
app/views/users/show.html.haml
+1
-1
image_link_filter.rb
lib/banzai/filter/image_link_filter.rb
+2
-2
video_link_filter.rb
lib/banzai/filter/video_link_filter.rb
+1
-0
No files found.
app/assets/javascripts/environments/components/environment_external_url.js
View file @
c0873f94
...
...
@@ -12,7 +12,7 @@ module.exports = Vue.component('external-url-component', {
},
template
:
`
<a class="btn external_url" :href="externalUrl" target="_blank">
<a class="btn external_url" :href="externalUrl" target="_blank"
rel="noopener noreferrer"
>
<i class="fa fa-external-link"></i>
</a>
`
,
...
...
app/assets/javascripts/merge_request_widget.js
View file @
c0873f94
...
...
@@ -13,13 +13,13 @@ require('./smart_interval');
<%= ci_success_icon %>
<span>
Deployed to
<a href="<%- url %>" target="_blank" class="environment">
<a href="<%- url %>" target="_blank"
rel="noopener noreferrer"
class="environment">
<%- name %>
</a>
<span class="js-environment-timeago" data-toggle="tooltip" data-placement="top" data-title="<%- deployed_at_formatted %>">
<%- deployed_at %>
</span>
<a class="js-environment-link" href="<%- external_url %>" target="_blank">
<a class="js-environment-link" href="<%- external_url %>" target="_blank"
rel="noopener noreferrer"
>
<i class="fa fa-external-link"></i>
View on <%- external_url_formatted %>
</a>
...
...
app/helpers/commits_helper.rb
View file @
c0873f94
...
...
@@ -211,7 +211,7 @@ module CommitsHelper
external_url
=
environment
.
external_url_for
(
diff_new_path
,
commit_sha
)
return
unless
external_url
link_to
(
external_url
,
class:
'btn btn-file-option has-tooltip'
,
target:
'_blank'
,
title:
"View on
#{
environment
.
formatted_external_url
}
"
,
data:
{
container:
'body'
})
do
link_to
(
external_url
,
class:
'btn btn-file-option has-tooltip'
,
target:
'_blank'
,
rel:
'noopener noreferrer'
,
title:
"View on
#{
environment
.
formatted_external_url
}
"
,
data:
{
container:
'body'
})
do
icon
(
'external-link'
)
end
end
...
...
app/helpers/import_helper.rb
View file @
c0873f94
...
...
@@ -7,7 +7,7 @@ module ImportHelper
def
provider_project_link
(
provider
,
path_with_namespace
)
url
=
__send__
(
"
#{
provider
}
_project_url"
,
path_with_namespace
)
link_to
path_with_namespace
,
url
,
target:
'_blank'
link_to
path_with_namespace
,
url
,
target:
'_blank'
,
rel:
'noopener noreferrer'
end
private
...
...
app/views/admin/appearances/_form.html.haml
View file @
c0873f94
...
...
@@ -48,7 +48,7 @@
.form-actions
=
f
.
submit
'Save'
,
class:
'btn btn-save append-right-10'
-
if
@appearance
.
persisted?
=
link_to
'Preview last save'
,
preview_admin_appearances_path
,
class:
'btn'
,
target:
'_blank'
=
link_to
'Preview last save'
,
preview_admin_appearances_path
,
class:
'btn'
,
target:
'_blank'
,
rel:
'noopener noreferrer'
-
if
@appearance
.
updated_at
%span
.pull-right
...
...
app/views/admin/application_settings/_form.html.haml
View file @
c0873f94
...
...
@@ -404,7 +404,7 @@
Enable Sentry
.help-block
Sentry is an error reporting and logging tool which is currently not shipped with GitLab, get it here:
%a
{
href:
'https://getsentry.com'
,
target:
'_blank'
}
https://getsentry.com
%a
{
href:
'https://getsentry.com'
,
target:
'_blank'
,
rel:
'noopener noreferrer'
}
https://getsentry.com
.form-group
=
f
.
label
:sentry_dsn
,
'Sentry DSN'
,
class:
'control-label col-sm-2'
...
...
app/views/events/event/_note.html.haml
View file @
c0873f94
...
...
@@ -15,6 +15,6 @@
=
link_to
note
.
attachment
.
url
,
target:
'_blank'
do
=
image_tag
note
.
attachment
.
url
,
class:
'note-image-attach'
-
else
=
link_to
note
.
attachment
.
url
,
target:
"_blank"
,
class:
'note-file-attach'
do
=
link_to
note
.
attachment
.
url
,
target:
'_blank'
,
class:
'note-file-attach'
do
%i
.fa.fa-paperclip
=
note
.
attachment_identifier
app/views/help/index.html.haml
View file @
c0873f94
...
...
@@ -17,7 +17,7 @@
%br
Used by more than 100,000 organizations, GitLab is the most popular solution to manage git repositories on-premises.
%br
Read more about GitLab at
#{
link_to
promo_host
,
promo_url
,
target:
'_blank'
}
.
Read more about GitLab at
#{
link_to
promo_host
,
promo_url
,
target:
'_blank'
,
rel:
'noopener noreferrer'
}
.
-
if
current_application_settings
.
help_page_text
.
present?
%hr
=
markdown_field
(
current_application_settings
,
:help_page_text
)
...
...
app/views/import/bitbucket/status.html.haml
View file @
c0873f94
...
...
@@ -33,7 +33,7 @@
-
@already_added_projects
.
each
do
|
project
|
%tr
{
id:
"project_#{project.id}"
,
class:
"#{project_status_css_class(project.import_status)}"
}
%td
=
link_to
project
.
import_source
,
"https://bitbucket.org/
#{
project
.
import_source
}
"
,
target:
'_blank'
=
link_to
project
.
import_source
,
"https://bitbucket.org/
#{
project
.
import_source
}
"
,
target:
'_blank'
,
rel:
'noopener noreferrer'
%td
=
link_to
project
.
path_with_namespace
,
[
project
.
namespace
.
becomes
(
Namespace
),
project
]
%td
.job-status
...
...
@@ -50,7 +50,7 @@
-
@repos
.
each
do
|
repo
|
%tr
{
id:
"repo_#{repo.owner}___#{repo.slug}"
}
%td
=
link_to
repo
.
full_name
,
"https://bitbucket.org/
#{
repo
.
full_name
}
"
,
target:
"_blank"
=
link_to
repo
.
full_name
,
"https://bitbucket.org/
#{
repo
.
full_name
}
"
,
target:
'_blank'
,
rel:
'noopener noreferrer'
%td
.import-target
%fieldset
.row
.input-group
...
...
@@ -70,7 +70,7 @@
-
@incompatible_repos
.
each
do
|
repo
|
%tr
{
id:
"repo_#{repo.owner}___#{repo.slug}"
}
%td
=
link_to
repo
.
full_name
,
"https://bitbucket.org/
#{
repo
.
full_name
}
"
,
target:
'_blank'
=
link_to
repo
.
full_name
,
"https://bitbucket.org/
#{
repo
.
full_name
}
"
,
target:
'_blank'
,
rel:
'noopener noreferrer'
%td
.import-target
%td
.import-actions-job-status
=
label_tag
'Incompatible Project'
,
nil
,
class:
'label label-danger'
...
...
app/views/import/gitlab/status.html.haml
View file @
c0873f94
...
...
@@ -43,7 +43,7 @@
-
@repos
.
each
do
|
repo
|
%tr
{
id:
"repo_#{repo["
id
"]}"
}
%td
=
link_to
repo
[
"path_with_namespace"
],
"https://gitlab.com/
#{
repo
[
"path_with_namespace"
]
}
"
,
target:
"_blank"
=
link_to
repo
[
"path_with_namespace"
],
"https://gitlab.com/
#{
repo
[
"path_with_namespace"
]
}
"
,
target:
"_blank"
,
rel:
'noopener noreferrer'
%td
.import-target
=
import_project_target
(
repo
[
'namespace'
][
'path'
],
repo
[
'name'
])
%td
.import-actions.job-status
...
...
app/views/import/google_code/new.html.haml
View file @
c0873f94
...
...
@@ -13,7 +13,7 @@
%li
%p
Go to
#{
link_to
"Google Takeout"
,
"https://www.google.com/settings/takeout"
,
target:
"_blank"
}
.
#{
link_to
"Google Takeout"
,
"https://www.google.com/settings/takeout"
,
target:
'_blank'
,
rel:
'noopener noreferrer'
}
.
%li
%p
Make sure you're logged into the account that owns the projects you'd like to import.
...
...
app/views/import/google_code/status.html.haml
View file @
c0873f94
...
...
@@ -36,7 +36,7 @@
-
@already_added_projects
.
each
do
|
project
|
%tr
{
id:
"project_#{project.id}"
,
class:
"#{project_status_css_class(project.import_status)}"
}
%td
=
link_to
project
.
import_source
,
"https://code.google.com/p/
#{
project
.
import_source
}
"
,
target:
"_blank"
=
link_to
project
.
import_source
,
"https://code.google.com/p/
#{
project
.
import_source
}
"
,
target:
"_blank"
,
rel:
'noopener noreferrer'
%td
=
link_to
project
.
path_with_namespace
,
[
project
.
namespace
.
becomes
(
Namespace
),
project
]
%td
.job-status
...
...
@@ -53,7 +53,7 @@
-
@repos
.
each
do
|
repo
|
%tr
{
id:
"repo_#{repo.id}"
}
%td
=
link_to
repo
.
name
,
"https://code.google.com/p/
#{
repo
.
name
}
"
,
target:
"_blank"
=
link_to
repo
.
name
,
"https://code.google.com/p/
#{
repo
.
name
}
"
,
target:
"_blank"
,
rel:
'noopener noreferrer'
%td
.import-target
#{
current_user
.
username
}
/
#{
repo
.
name
}
%td
.import-actions.job-status
...
...
@@ -63,7 +63,7 @@
-
@incompatible_repos
.
each
do
|
repo
|
%tr
{
id:
"repo_#{repo.id}"
}
%td
=
link_to
repo
.
name
,
"https://code.google.com/p/
#{
repo
.
name
}
"
,
target:
"_blank"
=
link_to
repo
.
name
,
"https://code.google.com/p/
#{
repo
.
name
}
"
,
target:
"_blank"
,
rel:
'noopener noreferrer'
%td
.import-target
%td
.import-actions-job-status
=
label_tag
"Incompatible Project"
,
nil
,
class:
"label label-danger"
...
...
app/views/koding/index.html.haml
View file @
c0873f94
...
...
@@ -2,5 +2,5 @@
%p
=
icon
(
'circle'
,
class:
'cgreen'
)
Integration is active for
=
link_to
koding_project_url
,
target:
'_blank'
do
=
link_to
koding_project_url
,
target:
'_blank'
,
rel:
'noopener noreferrer'
do
#{
current_application_settings
.
koding_url
}
app/views/profiles/show.html.haml
View file @
c0873f94
...
...
@@ -18,7 +18,7 @@
or change it at
#{
link_to
Gitlab
.
config
.
gravatar
.
host
,
"http://"
+
Gitlab
.
config
.
gravatar
.
host
}
.col-lg-9
.clearfix.avatar-image.append-bottom-default
=
link_to
avatar_icon
(
@user
,
400
),
target:
'_blank'
do
=
link_to
avatar_icon
(
@user
,
400
),
target:
'_blank'
,
rel:
'noopener noreferrer'
do
=
image_tag
avatar_icon
(
@user
,
160
),
alt:
''
,
class:
'avatar s160'
%h5
.prepend-top-0
Upload new avatar
...
...
app/views/projects/blob/_image.html.haml
View file @
c0873f94
...
...
@@ -9,7 +9,7 @@
-
else
.nothing-here-block
The SVG could not be displayed as it is too large, you can
#{
link_to
(
'view the raw file'
,
namespace_project_raw_path
(
@project
.
namespace
,
@project
,
@id
),
target:
'_blank'
)
}
#{
link_to
(
'view the raw file'
,
namespace_project_raw_path
(
@project
.
namespace
,
@project
,
@id
),
target:
'_blank'
,
rel:
'noopener noreferrer'
)
}
instead.
-
else
%img
{
src:
namespace_project_raw_path
(
@project
.
namespace
,
@project
,
tree_join
(
@commit
.
id
,
blob
.
path
)),
alt:
"#{blob.name}"
}
app/views/projects/blob/_text.html.haml
View file @
c0873f94
...
...
@@ -3,7 +3,7 @@
.nothing-here-block
File too large, you can
=
succeed
'.'
do
=
link_to
'view the raw file'
,
namespace_project_raw_path
(
@project
.
namespace
,
@project
,
@id
),
target:
'_blank'
=
link_to
'view the raw file'
,
namespace_project_raw_path
(
@project
.
namespace
,
@project
,
@id
),
target:
'_blank'
,
rel:
'noopener noreferrer'
-
else
-
blob
.
load_all_data!
(
@repository
)
...
...
app/views/projects/blob/edit.html.haml
View file @
c0873f94
...
...
@@ -9,7 +9,7 @@
-
if
@conflict
.alert.alert-danger
Someone edited the file the same time you did. Please check out
=
link_to
"the file"
,
namespace_project_blob_path
(
@project
.
namespace
,
@project
,
tree_join
(
@target_branch
,
@file_path
)),
target:
"_blank"
=
link_to
"the file"
,
namespace_project_blob_path
(
@project
.
namespace
,
@project
,
tree_join
(
@target_branch
,
@file_path
)),
target:
"_blank"
,
rel:
'noopener noreferrer'
and make sure your changes will not unintentionally remove theirs.
.file-editor
...
...
app/views/projects/buttons/_koding.html.haml
View file @
c0873f94
-
if
koding_enabled?
&&
current_user
&&
@repository
.
koding_yml
&&
can_push_branch?
(
@project
,
@project
.
default_branch
)
=
link_to
koding_project_url
(
@project
),
class:
'btn project-action-button inline'
,
target:
'_blank'
do
=
link_to
koding_project_url
(
@project
),
class:
'btn project-action-button inline'
,
target:
'_blank'
,
rel:
'noopener noreferrer'
do
Run in IDE (Koding)
app/views/projects/cycle_analytics/_overview.html.haml
View file @
c0873f94
...
...
@@ -9,7 +9,7 @@
Cycle Analytics gives an overview of how much time it takes to go from idea to production in your project.
To set up CA, you must first define a production environment by setting up your CI and then deploy to production.
%p
%a
.btn
{
href:
help_page_path
(
'user/project/cycle_analytics'
),
target:
"_blank"
}
Read more
%a
.btn
{
href:
help_page_path
(
'user/project/cycle_analytics'
),
target:
'_blank'
}
Read more
.col-md-6.overview-image
%span
.overview-icon
=
custom_icon
(
'icon_cycle_analytics_overview'
)
app/views/projects/environments/_external_url.html.haml
View file @
c0873f94
-
if
environment
.
external_url
&&
can?
(
current_user
,
:read_environment
,
environment
)
=
link_to
environment
.
external_url
,
target:
'_blank'
,
class:
'btn external-url'
do
=
link_to
environment
.
external_url
,
target:
'_blank'
,
rel:
'noopener noreferrer'
,
class:
'btn external-url'
do
=
icon
(
'external-link'
)
app/views/projects/merge_requests/_show.html.haml
View file @
c0873f94
...
...
@@ -16,7 +16,7 @@
.pull-right
-
if
@merge_request
.
source_branch_exists?
-
if
koding_enabled?
&&
@repository
.
koding_yml
=
link_to
koding_project_url
(
@merge_request
.
source_project
,
@merge_request
.
source_branch
,
@merge_request
.
commits
.
first
.
short_id
),
class:
"btn inline btn-grouped btn-sm"
,
target:
'_blank'
do
=
link_to
koding_project_url
(
@merge_request
.
source_project
,
@merge_request
.
source_branch
,
@merge_request
.
commits
.
first
.
short_id
),
class:
"btn inline btn-grouped btn-sm"
,
target:
'_blank'
,
rel:
'noopener noreferrer'
do
Run in IDE (Koding)
=
link_to
"#modal_merge_info"
,
class:
"btn inline btn-grouped btn-sm"
,
"data-toggle"
=>
"modal"
do
Check out branch
...
...
app/views/projects/merge_requests/show/_how_to_merge.html.haml
View file @
c0873f94
...
...
@@ -49,7 +49,7 @@
%strong
Tip:
=
succeed
'.'
do
You can also checkout merge requests locally by
=
link_to
'following these guidelines'
,
help_page_path
(
'user/project/merge_requests.md'
,
anchor:
"checkout-merge-requests-locally"
),
target:
'_blank'
=
link_to
'following these guidelines'
,
help_page_path
(
'user/project/merge_requests.md'
,
anchor:
"checkout-merge-requests-locally"
),
target:
'_blank'
,
rel:
'noopener noreferrer'
:javascript
$
(
function
(){
...
...
app/views/projects/services/mattermost_slash_commands/_detailed_help.html.haml
View file @
c0873f94
...
...
@@ -4,13 +4,13 @@
%ul
.list-unstyled.indent-list
%li
1.
=
link_to
'https://docs.mattermost.com/developer/slash-commands.html#enabling-custom-commands'
,
target:
'_blank'
,
rel:
'no
referrer noopen
er nofollow'
do
=
link_to
'https://docs.mattermost.com/developer/slash-commands.html#enabling-custom-commands'
,
target:
'_blank'
,
rel:
'no
opener noreferr
er nofollow'
do
Enable custom slash commands
=
icon
(
'external-link'
)
on your Mattermost installation
%li
2.
=
link_to
'https://docs.mattermost.com/developer/slash-commands.html#set-up-a-custom-command'
,
target:
'_blank'
,
rel:
'no
referrer noopen
er nofollow'
do
=
link_to
'https://docs.mattermost.com/developer/slash-commands.html#set-up-a-custom-command'
,
target:
'_blank'
,
rel:
'no
opener noreferr
er nofollow'
do
Add a slash command
=
icon
(
'external-link'
)
in your Mattermost team with these options:
...
...
app/views/projects/services/mattermost_slash_commands/_help.html.haml
View file @
c0873f94
...
...
@@ -4,7 +4,7 @@
%p
This service allows users to perform common operations on this
project by entering slash commands in Mattermost.
=
link_to
help_page_path
(
'user/project/integrations/mattermost_slash_commands.md'
),
target:
'_blank'
,
ref:
'noreferrer nofollow noopener'
do
=
link_to
help_page_path
(
'user/project/integrations/mattermost_slash_commands.md'
),
target:
'_blank'
do
View documentation
=
icon
(
'external-link'
)
%p
.inline
...
...
app/views/projects/services/slack_slash_commands/_help.html.haml
View file @
c0873f94
...
...
@@ -5,7 +5,7 @@
%p
This service allows users to perform common operations on this
project by entering slash commands in Slack.
=
link_to
help_page_path
(
'user/project/integrations/slack_slash_commands.md'
),
target:
'_blank'
,
ref:
'noreferrer nofollow noopener'
do
=
link_to
help_page_path
(
'user/project/integrations/slack_slash_commands.md'
),
target:
'_blank'
do
View documentation
=
icon
(
'external-link'
)
%p
.inline
...
...
@@ -57,7 +57,7 @@
=
label_tag
nil
,
'Customize icon'
,
class:
'col-sm-2 col-xs-12 control-label'
.col-sm-10.col-xs-12.text-block
=
image_tag
(
asset_url
(
'slash-command-logo.png'
),
width:
36
,
height:
36
)
=
link_to
(
'Download image'
,
asset_url
(
'gitlab_logo.png'
),
class:
'btn btn-sm'
,
target:
'_blank'
)
=
link_to
(
'Download image'
,
asset_url
(
'gitlab_logo.png'
),
class:
'btn btn-sm'
,
target:
'_blank'
,
rel:
'noopener noreferrer'
)
.form-group
=
label_tag
nil
,
'Autocomplete'
,
class:
'col-sm-2 col-xs-12 control-label'
...
...
app/views/projects/snippets/show.html.haml
View file @
c0873f94
...
...
@@ -9,7 +9,7 @@
=
@snippet
.
file_name
.file-actions
=
clipboard_button
(
clipboard_target:
".blob-content[data-blob-id='
#{
@snippet
.
id
}
']"
,
class:
"btn btn-sm"
)
=
link_to
'Raw'
,
raw_namespace_project_snippet_path
(
@project
.
namespace
,
@project
,
@snippet
),
class:
"btn btn-sm"
,
target:
"_blank"
=
link_to
'Raw'
,
raw_namespace_project_snippet_path
(
@project
.
namespace
,
@project
,
@snippet
),
class:
"btn btn-sm"
,
target:
"_blank"
,
rel:
'noopener noreferrer'
=
render
'shared/snippets/blob'
.row-content-block.top-block.content-component-block
...
...
app/views/shared/issuable/_form.html.haml
View file @
c0873f94
...
...
@@ -8,7 +8,7 @@
.alert.alert-danger
Someone edited the
#{
issuable
.
class
.
model_name
.
human
.
downcase
}
the same time you did.
Please check out
=
link_to
"the
#{
issuable
.
class
.
model_name
.
human
.
downcase
}
"
,
polymorphic_path
([
@project
.
namespace
.
becomes
(
Namespace
),
@project
,
issuable
]),
target:
"_blank"
=
link_to
"the
#{
issuable
.
class
.
model_name
.
human
.
downcase
}
"
,
polymorphic_path
([
@project
.
namespace
.
becomes
(
Namespace
),
@project
,
issuable
]),
target:
"_blank"
,
rel:
'noopener noreferrer'
and make sure your changes will not unintentionally remove theirs
.form-group
...
...
app/views/snippets/show.html.haml
View file @
c0873f94
...
...
@@ -8,7 +8,7 @@
=
@snippet
.
file_name
.file-actions
=
clipboard_button
(
clipboard_target:
".blob-content[data-blob-id='
#{
@snippet
.
id
}
']"
,
class:
"btn btn-sm"
)
=
link_to
'Raw'
,
raw_snippet_path
(
@snippet
),
class:
"btn btn-sm"
,
target:
"_blank"
=
link_to
'Raw'
,
raw_snippet_path
(
@snippet
),
class:
"btn btn-sm"
,
target:
"_blank"
,
rel:
'noopener noreferrer'
=
link_to
'Download'
,
download_snippet_path
(
@snippet
),
class:
"btn btn-sm"
=
render
'shared/snippets/blob'
...
...
app/views/users/show.html.haml
View file @
c0873f94
...
...
@@ -33,7 +33,7 @@
.profile-header
.avatar-holder
=
link_to
avatar_icon
(
@user
,
400
),
target:
'_blank'
do
=
link_to
avatar_icon
(
@user
,
400
),
target:
'_blank'
,
rel:
'noopener noreferrer'
do
=
image_tag
avatar_icon
(
@user
,
90
),
class:
"avatar s90"
,
alt:
''
.user-info
...
...
lib/banzai/filter/image_link_filter.rb
View file @
c0873f94
...
...
@@ -2,7 +2,6 @@ module Banzai
module
Filter
# HTML filter that wraps links around inline images.
class
ImageLinkFilter
<
HTML
::
Pipeline
::
Filter
# Find every image that isn't already wrapped in an `a` tag, create
# a new node (a link to the image source), copy the image as a child
# of the anchor, and then replace the img with the link-wrapped version.
...
...
@@ -12,7 +11,8 @@ module Banzai
'a'
,
class:
'no-attachment-icon'
,
href:
img
[
'src'
],
target:
'_blank'
target:
'_blank'
,
rel:
'noopener noreferrer'
)
link
.
children
=
img
.
clone
...
...
lib/banzai/filter/video_link_filter.rb
View file @
c0873f94
...
...
@@ -43,6 +43,7 @@ module Banzai
element
[
'title'
]
||
element
[
'alt'
],
href:
element
[
'src'
],
target:
'_blank'
,
rel:
'noopener noreferrer'
,
title:
"Download '
#{
element
[
'title'
]
||
element
[
'alt'
]
}
'"
)
download_paragraph
=
doc
.
document
.
create_element
(
'p'
)
download_paragraph
.
children
=
link
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment