logjam_core icon indicating copy to clipboard operation
logjam_core copied to clipboard

Published 20 hours ago verified publisher icon skaes

Log excerpts should be properly escaped

Open boosty opened this issue 9 years ago • 0 comments

Currently the live stream and the error list views don't escape html specials chars (such as < > &) in the log excerpt correctly.

Example log line:

Riak client error: #<SocketError: Unexpected EOF on PBC socket> for #<Riak::Client::Beefcake>

The live stream does not seem to escape it at all (which could cause XSS):

Riak client error: # for #

The error list view seems to double-escape it:

Riak client error: #&lt;SocketError: Unexpected EOF on PBC socket&gt; for #&lt;Riak::Client::Beefcake&gt;

boosty avatar Apr 28 '15 09:04 boosty