mirror of
https://github.com/gohugoio/hugo.git
synced 2024-12-01 22:01:43 -05:00
ee359df172
The template packages are based on go1.20.5 with the patch in befec5ddbbfbd81ec84e74e15a38044d67f8785b added. This also includes a security fix that now disallows Go template actions in JS literals (inside backticks). This will throw an error saying "... appears in a JS template literal". If you're really sure this isn't a security risk in your case, you can revert to the old behaviour: ```toml [security] [security.gotemplates] allowActionJSTmpl = true ``` See https://github.com/golang/go/issues/59234 Fixes #11112 |
||
|---|---|---|
| .. | ||
| testdata | ||
| attr.go | ||
| attr_string.go | ||
| clone_test.go | ||
| content.go | ||
| content_test.go | ||
| context.go | ||
| css.go | ||
| css_test.go | ||
| delim_string.go | ||
| doc.go | ||
| element_string.go | ||
| error.go | ||
| escape.go | ||
| escape_test.go | ||
| example_test.go | ||
| examplefiles_test.go | ||
| exec_test.go | ||
| html.go | ||
| html_test.go | ||
| hugo_template.go | ||
| js.go | ||
| js_test.go | ||
| jsctx_string.go | ||
| multi_test.go | ||
| state_string.go | ||
| template.go | ||
| template_test.go | ||
| transition.go | ||
| transition_test.go | ||
| url.go | ||
| url_test.go | ||
| urlpart_string.go | ||