Mirror
/
zulip
mirror of https://github.com/zulip/zulip.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
41,027 Commits 28 Branches 142 Tags 698 MiB
Commit Graph

3 Commits

Author SHA1 Message Date
Tim Abbott a2767e8c50 CVE-2020-14194: Use noopener/noreferrer for external links. 
We fixed the main issue of this form in CVE-2020-9444, but the audit
done at that time only included links found in rendered_markdown; this
change completes our audit for links with target=_blank anywhere in
the codebase.
 2020-06-16 23:35:39 -07:00
Tim Abbott 71078adc50 docs: Update URLs to use https://zulip.com. 
We're migrating to using the cleaner zulip.com domain, which involves
changing all of our links from ReadTheDocs and other places to point
to the cleaner URL.
 2020-06-08 18:10:45 -07:00
Tim Abbott d9bb6d0081 compatibility: Add more strict desktop app blocking. 
This allows us to block use of the desktop app with insecure versions
(we simply fail to load the Zulip webapp at all, instead rendering an
error page).

For now we block only versions that are known to be both insecure and
not auto-updating, but we can easily adjust these parameters in the
future.
 2020-03-24 20:33:11 -07:00