Elgato_dark/angular
1
0
Fork 0
mirror of https://github.com/angular/angular synced 2026-05-24 09:28:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
angular/packages/localize
History
Alan Agius 3c41e74fdd fix(localize): validate locale in getOutputPathFn to prevent path traversal 
The `localize-translate` CLI tool uses the `locale` field from translation files to expand the `{{LOCALE}}` placeholder in the output directory. It failed to sanitize `locale` input, allowing malicious translations to write files outside of the configured output directory.

This change mitigates this issue by combining.

Closes #67906

(cherry picked from commit 7871093822)
2026-03-30 12:15:31 +02:00
..
init build: remove API doc generation for localize/init and add mnemonic to API rendering rule. 2025-12-15 11:41:43 -08:00
schematics fix(localize): add support for unit-test builder in ng-add schematic 2026-01-29 12:17:15 -08:00
src build: rename defaults2.bzl to defaults.bzl (#63383) 2025-08-25 15:45:01 -07:00
test build: rename defaults2.bzl to defaults.bzl (#63383) 2025-08-25 15:45:01 -07:00
tools fix(localize): validate locale in getOutputPathFn to prevent path traversal 2026-03-30 12:15:31 +02:00
BUILD.bazel build: rename defaults2.bzl to defaults.bzl (#63383) 2025-08-25 15:45:01 -07:00
index.ts feat(bazel): support bundling .d.ts with code splitting (#60321) 2025-03-11 13:03:08 -07:00
package.json build: update all non-major dependencies 2026-02-06 09:44:52 -08:00
PACKAGE.md ci: reformat files 2025-12-16 14:44:19 -08:00
private.ts refactor: update license text to point to angular.dev (#57901) 2024-09-24 15:33:00 +02:00