Elgato_dark/angular
1
0
Fork 0
mirror of https://github.com/angular/angular synced 2026-05-24 09:28:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
angular/packages/localize/tools/test
History
Alan Agius 3c41e74fdd fix(localize): validate locale in getOutputPathFn to prevent path traversal 
The `localize-translate` CLI tool uses the `locale` field from translation files to expand the `{{LOCALE}}` placeholder in the output directory. It failed to sanitize `locale` input, allowing malicious translations to write files outside of the configured output directory.

This change mitigates this issue by combining.

Closes #67906

(cherry picked from commit 7871093822)
2026-03-30 12:15:31 +02:00
..
extract build: update Jasmine to 6.0.0 2026-02-09 12:15:57 -08:00
helpers build: update Jasmine to 6.0.0 2026-02-09 12:15:57 -08:00
migrate build: update Jasmine to 6.0.0 2026-02-09 12:15:57 -08:00
translate fix(localize): validate locale in getOutputPathFn to prevent path traversal 2026-03-30 12:15:31 +02:00
BUILD.bazel build: update Jasmine to 6.0.0 2026-02-09 12:15:57 -08:00
diagnostics_spec.ts refactor: update license text to point to angular.dev (#57901) 2024-09-24 15:33:00 +02:00
source_file_utils_spec.ts build: update Jasmine to 6.0.0 2026-02-09 12:15:57 -08:00