#23269 closed Cleanup/optimization (fixed)
Deprecate django.utils.remove_tags() and removetags template filter
| Reported by: | Tim Graham | Owned by: | Tim Graham |
|---|---|---|---|
| Component: | Template system | Version: | dev |
| Severity: | Normal | Keywords: | |
| Cc: | Triage Stage: | Accepted | |
| Has patch: | yes | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description
From the removetags security advisory: "We plan to deprecate these functions in a future version of Django rather keep around functions whose names are likely to lead to their use in security-sensitive contexts where they are not actually safe."
This also includes the undocumented and unused django.utils.html.strip_entities().
Change History (3)
comment:1 by , 11 years ago
| Has patch: | set |
|---|
comment:2 by , 11 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
Note:
See TracTickets
for help on using tickets.
PR