Martin Auswöger
Martin Auswöger
> Even increasing it to `300000` didn't stop the spam. Another message came in today. You could try something like `1000000`. In my tests I noticed that Chrome seems to...
> Should we continue testing here or close the ticket? Keep the issue open. I think I have some ideas on how to improve our captcha.
> …people will get random errors now… I don’t think that is correct. The errors are not random but instead point to an error in the template or in the...
> > As these errors are suppressed in `prod` I don’t see a BC issue here > > But still, it will be unexpected in `dev`, as the PHP template...
> It is a _best effort_ to quote a string that _might_ use a reserved word, it never was _make something secure_. I agree that this was never meant to...
A public API method named `quoteIdentifier()` should not enable SQL injections, I don’t see why we need to discuss this. You yourself approved making this method `@internal` in #7277 >...
> As this is a fix Is it though? IMO the current behavior is not broken, it just would be nicer to skip the unnecessary redirect and genrate the target...
> You don't want to lik to the root page, you want to link to that domain & language in my opinion. Exactly. And this is not the case in...
> is this really intended? Yes, it is not possible to include the original DCA files as they are missing the `class_exists()` check. To fix that we would need to...
> …you take away the option for me as a dev to pass on HTML of which I **know it is safe** but the sanitizer will kill it. I don’t...