summaryrefslogtreecommitdiff
path: root/django/utils/html.py
AgeCommit message (Expand)Author
2025-12-17Fixed #32568 -- Replaced mark_safe() with SafeString for literal values.Pravin Kamble
2025-11-20Fixed #36737 -- Escaped further control characters in escapejs.farthestmage
2025-11-07Fixed #36705 -- Avoided string concatenation in utils.Kasyap Pentamaraju
2025-11-05Fixed #36710 -- Fixed a regression in urlize for multipart domain names.Mehraz Hossain Rumman
2025-08-28Fixed #35533 -- Prevented urlize creating broken links given a markdown link ...SaJH
2025-07-23Refs #36500 -- Rewrapped long docstrings and block comments via a script.django-bot
2025-05-06Fixed CVE-2025-32873 -- Mitigated potential DoS in strip_tags().Sarah Boyce
2025-04-02Fixed CVE-2025-27556 -- Mitigated potential DoS in url_has_allowed_host_and_s...Sarah Boyce
2025-03-19Fixed #36000 -- Deprecated HTTP as the default protocol in urlize and urlizet...Ahmed Nassar
2025-01-23Fixed #36013 -- Removed use of IDNA-2003 in django.utils.html.Mike Edmunds
2025-01-20Fixed #36017 -- Used EmailValidator in urlize to detect emails.greg
2025-01-15Refs #34609 -- Removed support for calling format_html() without arguments pe...Sarah Boyce
2025-01-14Fixed #35998 -- Added caching to django.utils.html.urlize().Sarah Boyce
2024-12-17Fixed #36012 -- Made mailto punctuation percent-encoded in Urlizer.Mike Edmunds
2024-12-04Fixed CVE-2024-53907 -- Mitigated potential DoS in strip_tags().Sarah Boyce
2024-09-03Fixed CVE-2024-45230 -- Mitigated potential DoS in urlize and urlizetrunc tem...Sarah Boyce
2024-08-27Refs #34609 -- Fixed deprecation warning stack level in format_html().Adam Johnson
2024-08-20Fixed #35668 -- Added mapping support to format_html_join.nabil-rady
2024-08-06Fixed CVE-2024-41991 -- Prevented potential ReDoS in django.utils.html.urlize...Mariusz Felisiak
2024-08-06Fixed CVE-2024-41990 -- Mitigated potential DoS in urlize and urlizetrunc tem...Sarah Boyce
2024-07-09Fixed CVE-2024-38875 -- Mitigated potential DoS in urlize and urlizetrunc tem...Adam Johnson
2024-03-14Refs #30686 -- Made django.utils.html.VOID_ELEMENTS a frozenset.Nick Pope
2023-07-14Refs #30686 -- Moved Parser.SELF_CLOSING_TAGS to django.utils.html.VOID_ELEMENTSDavid Smith
2023-06-06Fixed #34609 -- Deprecated calling format_html() without arguments.devilsautumn
2023-01-18Refs #34233 -- Used str.removeprefix()/removesuffix().Mariusz Felisiak
2022-11-10Updated documentation and comments for RFC updates.Nick Pope
2022-06-28Fixed #33779 -- Allowed customizing encoder class in django.utils.html.json_s...Hrushikesh Vaidya
2022-02-21Removed unnecessary str type from @keep_lazy decorator for escape()/escapejs().Mariusz Felisiak
2022-02-10Refs #32568 -- Optimized escape() by using SafeString instead of mark_safe().David
2022-02-07Refs #33476 -- Reformatted code with Black.django-bot
2021-11-22Fixed #33302 -- Made element_id optional argument for json_script template fi...Baptiste Mispelon
2021-11-03Refs #33245 -- Minor edits to django.utils.html.urlize() changes.tim-mccurrach
2021-11-01Fixed #33245 -- Made django.utils.html.urlize() thread-safe.Timothy McCurrach
2021-10-15Fixed #33195 -- Refactored urlize() based on a class.Claude Paroz
2021-10-14Removed unused DOTS list.Claude Paroz
2021-07-07Fixed #32866 -- Fixed trimming trailing punctuation from escaped string in ur...Shipeng Feng
2019-11-25Removed unused unencoded_ampersands_re regex.Baptiste Mispelon
2019-10-29Fixed #30899 -- Lazily compiled import time regular expressions.Hasan Ramezani
2019-08-01Fixed CVE-2019-14233 -- Prevented excessive HTMLParser recursion in strip_tag...Florian Apolloner
2019-07-03Refs #30608 -- Added django.utils.encoding.punycode().Mariusz Felisiak
2019-07-02Fixed typos in comments and docs.Min ho Kim
2019-04-25Fixed #30399 -- Changed django.utils.html.escape()/urlize() to use html.escap...Jon Dufresne
2019-02-06Refs #27753 -- Favored SafeString over SafeText.Tim Graham
2018-10-12Simplified django.utils.html.urlize().Tim Graham
2018-10-12Refs #29826 -- Removed unused characters from urlize configuration.Tim Graham
2018-09-28Refs #28909 -- Simplifed code using unpacking generalizations.Sergey Fedoseev
2018-09-26Refs #29784 -- Switched to https:// links where available.Jon Dufresne
2018-08-21Fixed #29654 -- Made text truncation an ellipsis character instead of three d...Claude Paroz
2018-03-06Fixed CVE-2018-7536 -- Fixed catastrophic backtracking in urlize and urlizetr...Tim Graham
2018-02-09Refs #27795 -- Replaced force_text() calls with str() in django.utils.html.Jon Dufresne
generated by cgit v1.3 (git 2.53.0) at 2026-05-02 01:33:05 +0000