hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-22 23:35:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Add change note

Browse Source
This commit is contained in:
Joe Farebrother
2024-02-29 09:28:41 +00:00
parent 0b7b7ea1b8
commit bf2174ffce
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
ruby/ql/lib/change-notes/2024-02-29-i18n-translate.md Normal file
View File

@@ -0,0 +1,4 @@
---
category: minorAnalysis
---
Calls to `I18n.translate` as well as the rails helper translate methods now propagate taint from their keyword arguments. The rails translate methods are also recognized as XSS sanitizers when using keys marked as html safe.