mirror of
https://github.com/zulip/zulip.git
synced 2025-11-02 13:03:29 +00:00
a2767e8c50
We fixed the main issue of this form in CVE-2020-9444, but the audit done at that time only included links found in rendered_markdown; this change completes our audit for links with target=_blank anywhere in the codebase.
4 lines
132 B
Handlebars
4 lines
132 B
Handlebars
<a href="{{ link }}" target="_blank" rel="noopener noreferrer">
|
|
<i class="fa fa-question-circle-o" aria-hidden="true"></i>
|
|
</a>
|