Dominik Csapak f10efa82d0 formatter: html: fix logout button ... in commit d0f4b94 (fix regression in api/html (bootstrap) viewer) the $unsafe parameter of uri_escape_utf8 was corrected. This unintentionally also escapes the 'onclick' content of the logout button, making it not valid javascript code and thus would not execute. The commit talks about it being broken since URI::Escape v5.13, but it was seemingly broken before that too (tested on a PVE 7.x install with URI::Escape version 5.08) in that it did not escape anything on PVE 7. To fix the unintentional escape here, add 'onclick' to the exemptions of the escaped attributes. This should be safe since we don't add any user supplied value into these. While at it, rename 'onClick' to 'onclick' to be consistent with the other attribute names we use. Signed-off-by: Dominik Csapak <d.csapak@proxmox.com> Link: https://lore.proxmox.com/20250603130426.2575764-2-d.csapak@proxmox.com		2025-06-04 19:20:18 +02:00
debian	bump version to 5.2.2	2025-04-08 16:44:13 +02:00
src	formatter: html: fix logout button	2025-06-04 19:20:18 +02:00
.gitignore	fixup no newline at end of .gitignore	2018-05-25 16:42:05 +02:00
Makefile	fixup! buildsys: add sbuild target for convenience	2023-05-17 07:31:38 +02:00