loggerhead

Overview
Code
Bugs
Blueprints
Translations
Answers

Code review comment for lp:~mkanat/loggerhead/raw-controller

raw-controller
Merge into trunk-rich

Revision history for this message

John A Meinel (jameinel) wrote on 2010-12-03:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 12/3/2010 4:07 PM, Robert Collins wrote:
> application/octet-stream is unsafe.
>
> -Rob

We already have a way to get that, though. The 'download' urls do that.
Or are they somehow already protected against XSS, and new stuff
wouldn't be?

John
=:->

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Cygwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkz5arEACgkQJdeBCYSNAAOb7gCdH5Il4yjztErqf5GxdNVa7GvU
w5IAoJoQ/Y621aXMNFBRheD2fucpC/lE
=SKtw
-----END PGP SIGNATURE-----

« Back to merge proposal