LeadMagnet/leadchat
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity

chore: Switch to csv-safe gem to avoid csv injection (#6444)

Browse Source
This commit is contained in:
Sojan Jose
2023-02-14 03:08:36 +05:30
committed by GitHub
parent ff9cadc9a0
commit f0fbaacaf7
6 changed files with 16 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/views/api/v2/accounts/reports/agents.csv.erb
View File

@@ -5,8 +5,8 @@
I18n.t('reports.agent_csv.avg_resolution_time')
]
%>
<%= CSV.generate_line headers -%>
<%= CSVSafe.generate_line headers -%>
<% @report_data.each do |row| %>
<%= CSV.generate_line row -%>
<%= CSVSafe.generate_line row -%>
<% end %>
<%= CSV.generate_line [I18n.t('reports.period', since: Date.strptime(params[:since], '%s'), until: Date.strptime(params[:until], '%s'))] %>
<%= CSVSafe.generate_line [I18n.t('reports.period', since: Date.strptime(params[:since], '%s'), until: Date.strptime(params[:until], '%s'))] %>

6
app/views/api/v2/accounts/reports/inboxes.csv.erb
View File

@@ -6,8 +6,8 @@
I18n.t('reports.inbox_csv.avg_resolution_time')
]
%>
<%= CSV.generate_line headers -%>
<%= CSVSafe.generate_line headers -%>
<% @report_data.each do |row| %>
<%= CSV.generate_line row -%>
<%= CSVSafe.generate_line row -%>
<% end %>
<%= CSV.generate_line [I18n.t('reports.period', since: Date.strptime(params[:since], '%s'), until: Date.strptime(params[:until], '%s'))] %>
<%= CSVSafe.generate_line [I18n.t('reports.period', since: Date.strptime(params[:since], '%s'), until: Date.strptime(params[:until], '%s'))] %>

6
app/views/api/v2/accounts/reports/labels.csv.erb
View File

@@ -5,8 +5,8 @@
I18n.t('reports.label_csv.avg_resolution_time')
]
%>
<%= CSV.generate_line headers -%>
<%= CSVSafe.generate_line headers -%>
<% @report_data.each do |row| %>
<%= CSV.generate_line row -%>
<%= CSVSafe.generate_line row -%>
<% end %>
<%= CSV.generate_line [I18n.t('reports.period', since: Date.strptime(params[:since], '%s'), until: Date.strptime(params[:until], '%s'))] %>
<%= CSVSafe.generate_line [I18n.t('reports.period', since: Date.strptime(params[:since], '%s'), until: Date.strptime(params[:until], '%s'))] %>

6
app/views/api/v2/accounts/reports/teams.csv.erb
View File

@@ -5,8 +5,8 @@
I18n.t('reports.team_csv.avg_resolution_time')
]
%>
<%= CSV.generate_line headers -%>
<%= CSVSafe.generate_line headers -%>
<% @report_data.each do |row| %>
<%= CSV.generate_line row -%>
<%= CSVSafe.generate_line row -%>
<% end %>
<%= CSV.generate_line [I18n.t('reports.period', since: Date.strptime(params[:since], '%s'), until: Date.strptime(params[:until], '%s'))] %>
<%= CSVSafe.generate_line [I18n.t('reports.period', since: Date.strptime(params[:since], '%s'), until: Date.strptime(params[:until], '%s'))] %>