Commit Graph

981 Commits

Author SHA1 Message Date
Konstantin Obenland 89602b2c3a Merge pull request #729 from grappler/license
Declare Underscores license.
2015-05-09 10:08:22 -07:00
Fränk Klein 347692110c Merge pull request #742 from andyjsaint/wp_kses
In the arguments passed to `the_content()`, whitelist the class attribute of the Read More link so that it passes through `wp_kses()`.
2015-05-08 11:56:21 +02:00
Andrew Saint 6094916a24 Allow the class attribute to pass through kses 2015-05-08 10:46:27 +01:00
Fränk Klein 86b81fe391 Escape translations in search.php
See #737.
2015-05-05 12:39:26 +02:00
Fränk Klein 2d86340f43 Escape translations in functions.php
See #737.
2015-05-05 12:38:55 +02:00
Fränk Klein 229d5e93da Escape translations in footer.php
See #737.
2015-05-05 12:38:12 +02:00
Fränk Klein 062105ac9d Escape translations on comments.php.
See #737.
2015-05-05 12:37:07 +02:00
Fränk Klein 89c2d8e4dc Escape translations on 404.php
See #737.
2015-05-05 12:34:08 +02:00
Fränk Klein d35cef0e7d Escape translations in content-single.php
See #737.
2015-05-05 12:28:37 +02:00
Fränk Klein 032e14d241 Escape translations in content-page.php
See #737.
2015-05-05 12:27:52 +02:00
Fränk Klein 4be6dbec04 Secure translations in content.php.
See #737.
2015-05-05 12:26:56 +02:00
Fränk Klein d5db6f11b5 Secure translations in content.php.
See #737.
2015-05-05 12:26:14 +02:00
Fränk Klein 6fea1077d8 Escape translations in custom template tags.
See #737.
2015-05-05 12:16:55 +02:00
Fränk Klein ef1a884b6c Escape translation in title shim.
See #737.
2015-05-05 11:59:02 +02:00
Fränk Klein a7ad622e4c Don't use `esc_html__()` on translation containing HTML.
Use `wp_kses()` instead, whitelisting the only HTML the string can
contain.
2015-05-05 11:53:29 +02:00
Fränk Klein 7c92e3e138 Update Jetpack URLs to https
See #734.
2015-05-05 11:26:05 +02:00
Philip Arthur Moore 7dfe5408f0 Better coding standards for no content template. See #737. 2015-04-29 09:04:41 +07:00
Philip Arthur Moore 1c7f560662 Better coding standards for theme header. See #737. 2015-04-29 08:58:07 +07:00
Philip Arthur Moore 71d4231cbe Move template parts into their own dedicated folder and update Infinite Scroll to reflect this change. See #642. Props @leopuleo. 2015-04-29 08:42:12 +07:00
Philip Arthur Moore ff6337943b Better coding standards. See #737. 2015-04-29 08:32:11 +07:00
Philip Arthur Moore e4571763ec Update Travis CI Build Matrix now that WordPress 4.2 has been released. 2015-04-29 08:27:50 +07:00
Ulrich Pogson 8e1ec40b79 Move $content_width within a function 2015-04-25 08:47:20 +02:00
Ulrich Pogson 60d249b7c3 State licence of Underscores 2015-04-25 08:26:52 +02:00
Konstantin Obenland 68c56dcd79 Merge pull request #732 from emiluzelac/patch-36
Update localization link location.
2015-04-24 21:09:55 -05:00
Philip Arthur Moore 6f839cbbb0 Add whitespace rule exclusion into build checks. See #737. 2015-04-24 09:41:08 +07:00
Philip Arthur Moore 66d350aa3c Get rid of coding standards errors in the 404 page template by making sure that potentially unsafe output is escaped. See #737. 2015-04-24 09:39:05 +07:00
Philip Arthur Moore 171e1d10b2 Exclude whitespace rules from coding standards checks. See #737. 2015-04-24 09:08:26 +07:00
Philip Arthur Moore 2c21cdb7ae Kick off better coding standards sweep. See #737 2015-04-24 09:05:33 +07:00
Philip Arthur Moore ea8c6f41a8 Travis CI builds are failing. Remove all coding standards exclusions so that we're able to generate a useful, actionable report on which to base fixes to the build failures. 2015-04-24 08:36:23 +07:00
Emil Uzelac 92403d9d49 Localization link
Minor change with the new localization URL.
2015-04-17 13:58:15 -05:00
sixhours 3bc2eeda4f _s: Mobile-first toggle menu.
Reverse media queries to use min-width instead of max-width, taking a
mobile-first approach to the navigation menu. It displays as the
default, and disappears at widths above 600px.

Fixes #579.
2015-04-07 15:33:28 -07:00
Konstantin Obenland b1e67446f3 Merge branch 'pr/540' 2015-04-07 13:11:00 -07:00
Christopher Crouch 18f843ed03 _s: Tabbable dropdown menus.
Fixes #540.
2015-04-07 13:09:00 -07:00
Philip Arthur Moore a4d2204396 Merge pull request #690 from corvannoorloos/master
Update travis.yml to adhere to coding style used in WordPress' CI file.
2015-04-07 17:30:35 +07:00
Konstantin Obenland f0ec361d52 Merge remote-tracking branch 'origin/master' 2015-04-03 14:39:57 -07:00
Konstantin Obenland b7f4a02e89 Merge branch 'pr/722'
Fixes #722.
2015-04-03 14:39:31 -07:00
Konstantin Obenland c5ec554e95 Merge branch 'pr/722' 2015-04-03 14:37:59 -07:00
mrwweb 31144c7dbb New 1200x900px screenshot, compressed 2015-04-03 14:35:59 -07:00
Hugo Baeta 70b8baf2ed Updated Sass and CSS files to remove numbered TOC structure for added flexibility 2015-03-23 17:58:02 -07:00
David A. Kennedy 68fb7912ef Merge pull request #657 from jaspermdegroot/header
Made aria-controls refer to an ID instead of a class. Prevents ARIA error.
2015-03-03 19:54:55 -05:00
Konstantin Obenland 01217e3486 Merge pull request #708 from corvannoorloos/link-build-results
Link Travis build results.
2015-03-04 05:49:49 +05:30
Cor van Noorloos bf7982d7ca Link Travis build results
This links the badge to the Travis CI build results page
2015-03-03 21:19:56 +01:00
Jasper de Groot 412bdd8b81 Header: Made aria-controls refer to an ID instead of a class 2015-02-27 11:56:43 +01:00
Konstantin Obenland f0de1c9e8b Merge pull request #704 from oskarcieslik/patch-1
Fix JSLint error:
`regular expressions should be preceded by a left parenthesis assignment colon or comma`.
2015-02-23 09:38:57 -08:00
oskar_cieslik dfd8a0e921 JSLint error
JSLint error: "regular expressions should be preceded by a left parenthesis assignment colon or comma"
2015-02-23 11:48:50 +01:00
Konstantin Obenland d5c78acc10 Merge pull request #703 from taupecat/upstream-master
Using best practices to apply the proper units to the font-size mixin.

See http://sass-guidelin.es/#units
2015-02-17 20:01:20 -08:00
Tracy Rotton 0395cd6bba Using best practices to apply the proper units to the font-size mixin. See http://sass-guidelin.es/#units 2015-02-17 22:28:00 -05:00
Konstantin Obenland 70db168dc6 Merge pull request #702 from Automattic/fix-701
Sanitize location.hash before passing it to getElementById.

See #701.
2015-02-17 10:16:21 -08:00
Konstantin Obenland 4309cd6c56 Merge pull request #700 from pixelstrolch/comment-navigation
Consistent navigation.

Fixes #699.
2015-02-17 10:00:45 -08:00
Miguel Fonseca dea243f2eb Sanitize location.hash before passing it to getElementById
There is no actual vulnerability in the existing implementation, as we
can only fetch existing elements (no DOM injection is possible). Plus,
the only call occurring on those elements is `HTMLElement#focus`.

Consider this an extra, more future-proof precaution.
2015-02-17 17:52:36 +00:00