Last modified: 2008-07-12 20:41:21 UTC

Wikimedia Bugzilla is closed!

Wikimedia has migrated from Bugzilla to Phabricator. Bug reports should be created and updated in Wikimedia Phabricator instead. Please create an account in Phabricator and add your Bugzilla email address to it.
Wikimedia Bugzilla is read-only. If you try to edit or create any bug report in Bugzilla you will be shown an intentional error message.
In order to access the Phabricator task corresponding to a Bugzilla report, just remove "static-" from its URL.
You could still run searches in Bugzilla or access your list of votes but bug reports will obviously not be up-to-date in Bugzilla.
Bug 11496 - Sysops can put raw HTML in some MediaWiki:-messages
Sysops can put raw HTML in some MediaWiki:-messages
Status: RESOLVED INVALID
Product: MediaWiki
Classification: Unclassified
Internationalization (Other open bugs)
1.12.x
All All
: High normal with 1 vote (vote)
: ---
Assigned To: Nobody - You can work on this!
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2007-09-28 21:43 UTC by Jelte (WebBoy)
Modified: 2008-07-12 20:41 UTC (History)
2 users (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---


Attachments

Description Jelte (WebBoy) 2007-09-28 21:43:40 UTC
Sysops can put raw HTML in some MediaWiki:-messages (as of r26209):

*1movedto2
*1movedto2_redir
*aboutsite
*april
*august
*blanknamespace
*currentrevisionlink
*deletedarticle
*diff
*difference
*disclaimers
*february
*group-bureaucrat-member
*group-sysop-member
*hide
*isredirect
*istemplate
*january
*july
*june
*lastmodifiedat
*linklistsub
*linkstoimage
*march
*may_long
*modifiedarticleprotection
*nextn
*nextrevision
*nolinkstoimage
*overwroteimage
*powersearchtext
*previousrevision
*prevn
*privacy
*protectedarticle
*protect-summary-cascade
*rclinks
*redirectedfrom
*retrievedfrom
*returnto
*rev-deleted-user
*revdelete-logentry
*revertmove
*revision-info
*revision-info-current
*revision-nav
*september
*show
*size-kilobytes
*subject
*summary
*undeletedarticle
*unprotectedarticle
*unusedimagestext
*uploadedimage
*viewprevnext
*viewsourcefor
*whatlinkshere-barrow

and all the accesskey-* messages (this list is probably not complete).
Comment 1 Danny B. 2007-09-28 22:01:01 UTC
Why should this be bug? Why they shouldn't?
Comment 2 Brion Vibber 2007-09-29 20:11:29 UTC
Because in general messages should be plaintext or wikitext, with predictable and safe behavior.

Raw HTML messages are deprecated, and we plan to migrate out the remaining ones and do not recommend adding new ones.

There should already be a bug entry for this, though, that it should be duped to.
Comment 3 Jelte (WebBoy) 2007-09-30 14:42:27 UTC
(In reply to comment #2)
> There should already be a bug entry for this, though, that it should be duped
> to.

I couldn't find another bug entry, but related bugs are:
* bug 212: Many MediaWiki: messages not safe in XHTML
* bug 1023: Language files are not XHTML-compliant.
* bug 3208: "Wikify" remaining plain MediaWiki messages
* bug 8521: Show HTML support status in MediaWiki messages
Comment 4 Niklas Laxström 2008-07-12 20:41:21 UTC
List probably outdated, remaining messages are changed slowly when noticed, except in few high visibility places like edit summary. In addition, almost a dupe to 212, closing.

Note You need to log in before you can comment on or make changes to this bug.


Navigation
Links