Elgato_dark/angular
1
0
Fork 0
mirror of https://github.com/angular/angular synced 2026-05-24 09:28:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
angular/packages/localize/tools/test/translate
History
Alan Agius 3c41e74fdd fix(localize): validate locale in getOutputPathFn to prevent path traversal 
The `localize-translate` CLI tool uses the `locale` field from translation files to expand the `{{LOCALE}}` placeholder in the output directory. It failed to sanitize `locale` input, allowing malicious translations to write files outside of the configured output directory.

This change mitigates this issue by combining.

Closes #67906

(cherry picked from commit 7871093822)
2026-03-30 12:15:31 +02:00
..
asset_files Revert "refactor(compiler-cli): remove deep imports from compiler-cli (#64732)" 2025-11-06 13:09:01 -08:00
integration build: update Jasmine to 6.0.0 2026-02-09 12:15:57 -08:00
source_files build: update Jasmine to 6.0.0 2026-02-09 12:15:57 -08:00
translation_files build: update Jasmine to 6.0.0 2026-02-09 12:15:57 -08:00
output_path_spec.ts fix(localize): validate locale in getOutputPathFn to prevent path traversal 2026-03-30 12:15:31 +02:00
translator_spec.ts Revert "refactor(compiler-cli): remove deep imports from compiler-cli (#64732)" 2025-11-06 13:09:01 -08:00