Page MenuHomePhabricator
Create Task
Maniphest T210437

Sanitizer::stripAllTags shouldn't expand legacy "semicolon-less" HTML5 entities
Open, Needs TriagePublic
Actions

Description

When Sanitizer::stripAllTags was converted to use Remex in ddb4913f53624c8ee0a2a91bd44bf750e378569d we started decoding "semicolon-less" entities, which historically have not been allowed in wikitext. This caused a regression (T209236) when stripAllTags was invoked in link text. The regression was fixed by disabling semicolon-less entities in the specific case of alt/link option stripping, but we should probably disable these entities for every caller of Sanitizer::stripAllTags.

Details

SubjectRepoBranchLines +/-
Uniformly use "wikitext entities" not "HTML5 entities"mediawiki/services/parsoidmaster+73 -28
Customize query in gerrit

Related Objects

Event Timeline

cscott created this task.Nov 26 2018, 7:34 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 26 2018, 7:34 PM
gerritbot subscribed.Nov 26 2018, 7:45 PM

Change 475821 had a related patch set uploaded (by C. Scott Ananian; owner: C. Scott Ananian):
[mediawiki/services/parsoid@master] Uniformly use "wikitext entities" not "HTML5 entities"

https://gerrit.wikimedia.org/r/475821

gerritbot added a project: Patch-For-Review.Nov 26 2018, 7:45 PM
gerritbot added a comment.Nov 27 2018, 3:40 PM

Change 475821 merged by jenkins-bot:
[mediawiki/services/parsoid@master] Uniformly use "wikitext entities" not "HTML5 entities"

https://gerrit.wikimedia.org/r/475821

Stashbot mentioned this in T209236: "&params" URL parameter (used in a link parameter in [[File]] markup) incorrectly parsed as "¶ms" (%C2%B6ms).Nov 28 2018, 9:28 PM
Stashbot subscribed.

Mentioned in SAL (#wikimedia-operations) [2018-11-28T21:28:30Z] <arlolra> Updated Parsoid to 18a98af (T209236, T210437, T184755, T187142, T208470, T207286, T206777, T205710, T205546, T204477)

Stashbot mentioned this in T184755: Consider not removing multiple blank lines/white space between paragraphs.Nov 28 2018, 9:28 PM
Stashbot mentioned this in T187142: Deduplicate template styles in Parsoid.
Stashbot mentioned this in T208470: Parsoid should nowiki-escape '}' in a table cell or insert a whitespace character, as appropriate.
Stashbot mentioned this in T207286: Time profiling: Replace millisecond granularity timers with microsecond granularity timers.
Stashbot mentioned this in T206777: Create Wikipedia Shan.
Stashbot mentioned this in T205710: Create Wikinews Limburgish.
Stashbot mentioned this in T205546: Create Wiktionary Cantonese.
Stashbot mentioned this in T204477: Create punjabi.wikimedia.org for Punjabi Wikimedians User Group.
Maintenance_bot removed a project: Patch-For-Review.May 22 2019, 1:43 PM
Aklapper removed a subscriber: Parsing-Team--ARCHIVED.May 24 2023, 1:09 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits