po: doc/todo update

Signed-off-by: intrigeri <intrigeri@boum.org>
master
intrigeri 2008-11-06 14:21:31 +01:00
parent 802be94104
commit c8cc03c824
1 changed files with 4 additions and 4 deletions

View File

@ -215,10 +215,6 @@ TODO
Security checks
---------------
- `refreshpofiles` uses `system()`, whose args have to be checked more
thoroughly to prevent any security issue (command injection, etc.).
> Always pass `system()` a list of parameters to avoid the shell.
> I've checked in a change fixing that. --[[Joey]]
- Can any sort of directives be put in po files that will
cause mischief (ie, include other files, run commands, crash gettext,
whatever).
@ -227,6 +223,10 @@ Security checks
gettext/po4a rough corners
--------------------------
- commiting a new master page version updates the translations, but
does not refresh recentchanges anymore after having checked-in the
new translations (since manual IkiWiki::refresh() call was removed,
I guess)
- fix infinite loop when synchronizing two ikiwiki (when checkouts
live in different directories): say bla.fr.po has been updated in
repo2; pulling repo2 from repo1 seems to trigger a PO update, that