From: Joe English <jenglish@fl...> - 2012-11-28 20:41:51
Richard Hipp wrote:
> [... details of new fossil ticket schema ... ]
Thanks, this looks suitable to me now. Existing tracker tems from
the SourceForge database can be imported with 'J mimetype text/plain'
with no loss of information, and once we migrate off of SF new tickets
could use text/x-fossil-plain PROVIDED THAT the syntax is specified
'J mimetype text/html' looks slightly problematic to me. Clearly
it's not acceptable to store or transmit arbitrary text/html content
(XSS issues, HTML 5 massively complicated and a moving target,
et cetera); but if the fossil specification is tightened up a bit
that's probably also workable.
The text/x-fossil-wiki mimetype OTOH still strikes me as unsuitable,
at least for use in a bug tracker for Tcl and Tk. As with
text/x-fossil-plain and text/html the description is insufficiently
precise, but more importantly the notation uses metacharacters
that are also significant in Tcl and Tk source code. Fossil wiki
notation might be suitable for other projects, but for the Tcl
and Tk bug databases it ought to be unconditionally disabled.
Get latest updates about Open Source Projects, Conferences and News.