christianlight/tutor
6
0
Fork 0
mirror of https://github.com/ChristianLight/tutor.git synced 2024-11-04 20:37:52 +00:00
Code Issues Releases Activity

Apply edx-platform upstream xss security fixes

Browse Source
This commit is contained in:
Régis Behmo 2020-06-21 11:04:46 +02:00
parent 77a0a6f60d
commit 1773e2a347
2 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
CHANGELOG.md
View File

@ -2,6 +2,10 @@
Note: Breaking changes between versions are indicated by "💥".
## Unreleased
- [Security] Apply edx-platform upstream xss security fixes ([pull request](https://github.com/edx/edx-platform/pull/24258))
## v10.0.4 (2020-06-19)
- [Bugfix] Fix broken `tutor ui` command in binary

2
tutor/templates/build/openedx/Dockerfile
View File

@ -34,6 +34,8 @@ RUN mkdir -p /openedx/edx-platform && \
WORKDIR /openedx/edx-platform
# Patch edx-platform
# Apply xss security fixes https://github.com/edx/edx-platform/pull/24258
RUN curl https://github.com/overhangio/edx-platform/commit/1ab907b2b019f54450153b08cecb115d668efd25.patch | git apply -
# Get rid of lepl-related warnings
# https://github.com/edx/edx-platform/pull/24059
# https://github.com/overhangio/edx-platform/tree/overhangio/lepl-rfc6266-warning