Resolve "Relative links in Vulnerability modal not clickable" (!9767) · Merge requests · GitLab.org / GitLab · GitLab

The 17.0 major release is coming on May 16, 2024! This version brings many exciting improvements to GitLab, but also removes some deprecated features. We are introducing three breaking change windows during which we expect breaking changes to be deployed to GitLab.com. You can read more about it on our blogpost . The second breaking change window begins 2024-04-29 09:00 UTC and ends 2024-05-01 22:00 UTC.

Lukas 'ai-pi' Eipert requested to merge 9283-relative-links-in-vulnerability-modal-not-clickable into master Feb 28, 2019

What does this MR do?

This MR brings a small change to the isSafeUrl utility so it considers root-relative URLs safe, meaning that all these patterns are valid:

http://gitlab.com/some/path
https://gitlab.com/some/path
/some/path

Additionally, the valuedFields computed property will force field field to be an URL pointing to vulnerability.blob_path (if available).

Does this MR meet the acceptance criteria?

Conformity

Performance and testing

Review and add/update tests for this feature/bug. Consider all test levels. See the Test Planning Process.
Tested in all supported browsers
- Cross-browser testing revealed that isSafeUrl does not work as expected on IE11 (neither on master or this branch), the fix involves upgrading core-js so we can use the URL() polyfill, that will have to be done in follow up MRs

Closes #9283 (closed)

Edited May 29, 2019 by Paul Gascou-Vaillancourt