Fix test that check mentions for XSS (!20062) · Merge requests · GitLab.org / GitLab

Walmyr Lima e Silva Filho requested to merge fix-check-mentions-for-xss-test into master Nov 13, 2019

What does this MR do?

By simply tagging @eve the comment does not turn into a link, while by tagging @#{user.username} it turns into a link that when clicked could lead to an XSS attack, and this is what made me change the test.

Screenshots

Before

After

Does this MR meet the acceptance criteria?

Conformity

[-] Changelog entry
[-] Documentation (if required)
Code review guidelines
Merge request performance guidelines
Style guides
[-] Database guides
[-] Separation of EE specific content

Edited Nov 13, 2019 by Walmyr Lima e Silva Filho

Fix test that check mentions for XSS