summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorTooru Fujisawa <arai.unmht@gmail.com>2017-01-13 23:27:58 +0100
committerDavid Lawrence <dkl@mozilla.com>2017-01-13 23:28:09 +0100
commitf1ad5506428db19b46a7d95d956e6ce477019036 (patch)
tree9c2255abf6e88a3a5655b442c53e8cd3161a753c
parent68ec2dce72189b4699fd69f5716438075ff61fe9 (diff)
downloadbugzilla-f1ad5506428db19b46a7d95d956e6ce477019036.tar.gz
bugzilla-f1ad5506428db19b46a7d95d956e6ce477019036.tar.xz
Bug 1329511 - Any link to user-entered URL with target="_blank" should have rel="noopener" or rel="noreferrer"
-rw-r--r--extensions/BugModal/template/en/default/bug_modal/activity_stream.html.tmpl2
-rw-r--r--extensions/InlineHistory/template/en/default/hook/bug/comments-aftercomments.html.tmpl2
2 files changed, 2 insertions, 2 deletions
diff --git a/extensions/BugModal/template/en/default/bug_modal/activity_stream.html.tmpl b/extensions/BugModal/template/en/default/bug_modal/activity_stream.html.tmpl
index 4f9dd60b5..f5074dbfa 100644
--- a/extensions/BugModal/template/en/default/bug_modal/activity_stream.html.tmpl
+++ b/extensions/BugModal/template/en/default/bug_modal/activity_stream.html.tmpl
@@ -332,7 +332,7 @@
"$terms.bug $see_also.bug_id" FILTER bug_link(see_also.bug_id);
ELSE;
%]
- <a href="[% see_also.url FILTER html %]" target="_blank">[% see_also.url FILTER html %]</a>
+ <a href="[% see_also.url FILTER html %]" target="_blank" rel="noreferrer">[% see_also.url FILTER html %]</a>
[%
END;
", " UNLESS loop.last;
diff --git a/extensions/InlineHistory/template/en/default/hook/bug/comments-aftercomments.html.tmpl b/extensions/InlineHistory/template/en/default/hook/bug/comments-aftercomments.html.tmpl
index fb5d25225..c224a4e45 100644
--- a/extensions/InlineHistory/template/en/default/hook/bug/comments-aftercomments.html.tmpl
+++ b/extensions/InlineHistory/template/en/default/hook/bug/comments-aftercomments.html.tmpl
@@ -146,7 +146,7 @@
[% IF see_also.bug_id %]
[%~%][% "$terms.bug $see_also.bug_id" FILTER bug_link(see_also.bug_id) FILTER js %]
[% ELSE %]
- [%~%]<a href="[% see_also.url FILTER html FILTER js %]" target="_blank">
+ [%~%]<a href="[% see_also.url FILTER html FILTER js %]" target="_blank" rel="noreferrer">
[%~%][% see_also.url FILTER html FILTER js %]</a>
[% END %]
[%- ", " IF NOT loop.last %]