Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-19676

TAP test description does not get escaped

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Major Major
    • tap-plugin
    • None

      One of my tests outputs text that contains what looks like an HTML tag:

      ok 19 - msg is "defO01<<TRUNCATED>>"

      The Description column for this test on the TAP Extended Test Results page looks like this:

      - msg is "defO01<>"

      When I browse the source HTML for this section of the page, the text from the TAP output is definitely not being escaped. This could lead to cross-site scripting issues.

        1. JENKINS-19676-001.png
          JENKINS-19676-001.png
          40 kB

          [JENKINS-19676] TAP test description does not get escaped

          Andrew Johnson created issue -
          Bruno P. Kinoshita made changes -
          Status Original: Open [ 1 ] New: In Progress [ 3 ]
          Bruno P. Kinoshita made changes -
          Attachment New: JENKINS-19676-001.png [ 30752 ]
          Bruno P. Kinoshita made changes -
          Status Original: In Progress [ 3 ] New: Open [ 1 ]
          SCM/JIRA link daemon made changes -
          Resolution New: Fixed [ 1 ]
          Status Original: Open [ 1 ] New: Resolved [ 5 ]
          Bruno P. Kinoshita made changes -
          Status Original: Resolved [ 5 ] New: Closed [ 6 ]
          R. Tyler Croy made changes -
          Workflow Original: JNJira [ 151193 ] New: JNJira + In-Review [ 206965 ]

            kinow Bruno P. Kinoshita
            anjohnson Andrew Johnson
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: