Page MenuHomePhabricator

DemiMarie (Demi Marie Obenour)
User

Projects

User does not belong to any projects.

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Monday

  • Clear sailing ahead.

User Details

User Since
Oct 5 2016, 4:17 AM (426 w, 3 d)
Availability
Available

Recent Activity

May 9 2017

DemiMarie added a comment to T5301: Inline Remarkup escaping.

Would it be possible for reMarkup to strip all zero-width non-breaking
spaces from its output, unless there was more than one in a row (in which
case the number would be decreased by 1)? That would solve the problem.

May 9 2017, 5:47 PM · Remarkup

Feb 12 2017

DemiMarie added a comment to T5301: Inline Remarkup escaping.

I see your point.

Feb 12 2017, 12:03 AM · Remarkup

Feb 11 2017

DemiMarie added a comment to T5301: Inline Remarkup escaping.

What are your thoughts on allowing valid HTML entities through to the
browser without further escaping (outside of code blocks)? There seems to
be no reason to have them in text, and they could allow escaping.

Feb 11 2017, 12:22 AM · Remarkup

Feb 7 2017

DemiMarie added a comment to T5301: Inline Remarkup escaping.

What about triple backticks in code blocks? Code blocks can contain
anything, so I consider not being able to put three consecutive backticks
in them a bug.

Feb 7 2017, 3:51 AM · Remarkup

Feb 1 2017

DemiMarie added a comment to T5301: Inline Remarkup escaping.

T6143, while closed, seems to be a real-world use case to me.

Feb 1 2017, 2:16 PM · Remarkup
DemiMarie added a comment to T5301: Inline Remarkup escaping.

@epriestley I hope to fix this in a very general way, which will also solve many of the other tickets related to Remarkup (T6276, T5951, T5427).

Feb 1 2017, 12:17 AM · Remarkup

Jan 31 2017

DemiMarie added a comment to T5301: Inline Remarkup escaping.

I'll take this and T6002. Where in Phabricator's source code can I find the relevant PHP code? Edit: Found it in libphutil.

Jan 31 2017, 11:13 PM · Remarkup

Jan 1 2017

DemiMarie added a comment to T12046: PHPMailer RCE [CVE-2016-10033 and CVE-2016-10045].

libcurl supports SMTP (see https://curl.haxx.se/libcurl/c/smtp-mail.html) and can be used instead, provided that the relevant functions are exposed to PHP. This avoids needing to shell out to an external executable.

Jan 1 2017, 7:50 PM · Mail, Security