redash icon indicating copy to clipboard operation
redash copied to clipboard

Published 20 hours ago verified publisher icon getredash

Default to not allow HTML content in tables

Open ezraodio1 opened this issue 1 year ago • 1 comments
trafficstars

What type of PR is this?

  • [ ] Refactor
  • [ ] Feature
  • [ ] Bug Fix
  • [ ] New Query Runner (Data Source)
  • [ ] New Alert Destination
  • [x] Other

Description

Change the default for each column in a table to not allow HTML. This addresses a potential security issue.

How is this tested?

  • [ ] Unit tests (pytest, jest)
  • [ ] E2E Tests (Cypress)
  • [x] Manually
  • [ ] N/A

Verified that the default behavior changes when a table is created.

Related Tickets & Documents

https://github.com/getredash/redash/discussions/6615

Mobile & Desktop Screenshots/Recordings (if there are UI changes)

ezraodio1 avatar Jul 17 '24 19:07 ezraodio1