Add a test to make sure there's no XSS for hook logs (!18005) · Merge requests · GitLab.org / GitLab FOSS · GitLab

What does this MR do?

Add a test to make sure there's no XSS for hook logs

Are there points in the code the reviewer needs to double check?

We could add a bit more tests later

Why was this MR needed?

This test could detect an XSS vulnerability which could be introduced in https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/17877 which tests all passed but in hamlit 2.7.0 they changed that the :plain filter would no longer escape contents (!)

Does this MR meet the acceptance criteria?

Tests added for this feature/bug
Review
- Has been reviewed by Backend