Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

0.7.0 #433

Merged
merged 26 commits into from
Aug 30, 2015
Merged

0.7.0 #433

merged 26 commits into from
Aug 30, 2015

Conversation

JDGrimes
Copy link
Contributor

PR for tracking changes to be released in 0.7.0.

westonruter and others added 22 commits July 25, 2015 14:13
@westonruter
Make ArrayKeySpacingRestrictions errors fixable
1418527
@JDGrimes
Merge pull request #415 from WordPress-Coding-Standards/feature/error…
4e56965 
…-fixing-for-array-key-spacing-restrictions

Make ArrayKeySpacingRestrictions errors fixable
@JDGrimes
Use upstream FunctionDeclarationArgumentSpacing sniff
110f804 
The upstream version is now configurable to meet our needs, and also
contains improvements, like being fixable.

See #412, #385
@JDGrimes
Check spacing of functions
8d006be 
This adds functions and closures to the control structure spacing
sniff. The sniff checks for proper spacing on each side of each of the
parentheses. It also checks that the opening brace is on the same line.

I’ve actually improved the sniff while I was at it, to check for excess
space in addition to insufficient space.

Because of these improvements, and due to the non-configurability of
the upstream version of this sniff, this sniff is really not a
duplicate, and so #385 can be closed.

Fixes #412, #385
Ignore twig files for scanning
14b7ef7
@westonruter
Merge pull request #419 from insprintorob/feature/ignore-twig-files
84074c8 
Ignore twig files for scanning
@JDGrimes
Add esc_url_raw() to the sanitising functions
5a3f332 
Fixes #420
@jtsternberg
Likely the wrong issue is documented here
eacdd72
@jtsternberg
Add explicit reasoning for session sniff
81c0331 
From https://vip.wordpress.com/documentation/code-review-what-we-look-for/#session_start-and-other-session-related-functions, linked in #75
@JDGrimes
Merge pull request #422 from jtsternberg/patch-1
6438687 
Refer to the correct GitHub issue in the docs
@JDGrimes
Allow closure spacing to be configured
c7276e3 
Adds the `spaces_before_closure_open_paren` setting to the sniff. It
determines how many spaces come between the `function` keyword in a
closure and the opening parenthesis.
@JDGrimes
Remove debug cruft
3dbcb35
@JDGrimes
Add T_USE to sniffed control structures
7d19272 
See #417
@GaryJones
Merge pull request #417 from WordPress-Coding-Standards/issue/412
b20a852 
Check spacing of function declarations
@JDGrimes
Add intval() and boolval() to unslashing functions
13791ce 
They implicitly unslash the data passed to them, so it doesn't need to be put through `wp_unslash()` as well.

Fixes #426
@westonruter
Merge pull request #427 from WordPress-Coding-Standards/issue/426
5cd595b 
Add intval() and boolval() to unslashing functions
add do_shortcode() to the list . Fixes #428
bbe2540
@JDGrimes
Merge pull request #429 from paulschreiber/fix/shortcode-escaping
a203e17 
Add do_shortcode to list of autoescaped functions
@JDGrimes
Add hash_equals() to list of sanitizing functions
0e8f781 
`hash_equals()` returns a boolean value, and does not print anything directly, so it is safe to pass unsanitized data to it.
@westonruter
Merge pull request #430 from WordPress-Coding-Standards/feature/hash_…
d5717e7 
…equals

Add hash_equals() to list of sanitizing functions
@JDGrimes
Only check T_USE tokens associated with closures
84a7ffa 
The `T_USE` token is also used to import traits to classes, and to
import classes into namespaces.

Fixes #431
@westonruter
Merge pull request #432 from WordPress-Coding-Standards/issue/431
583f71e 
Only check T_USE tokens associated with closures
@JDGrimes JDGrimes added this to the 0.7.0 milestone Aug 30, 2015
JDGrimes and others added 4 commits August 30, 2015 11:56
@JDGrimes
Simplify and improve ternary handling in XSS sniff
d389688 
Most ternary conditions handled by this sniff occur within a set of
parentheses, and these are handled when an open parenthesis is
encountered in the token loop. However, the echo “function” is often
used without parentheses. Because of this, special handling is required
for ternary conditions that are used in an echo statement without
parentheses.

Previously the code for detecting this scenario was unnecessarily
complex, and incorrectly identified some ternary conditions as not
occurring in parentheses when they actually did. The result of this was
twofold: first, it would sometimes flag an expression as needing to be
escaped when it did not; and second, it could also skip over an
expression that did need to be escaped without flagging it.

This is now fixed.

Fixes #421
@GaryJones
Merge pull request #434 from WordPress-Coding-Standards/issue/421
fb860d7 
Simplify and improve ternary handling in XSS sniff
@JDGrimes
Change log for 0.7.0
4d69360
@GaryJones
Merge pull request #435 from WordPress-Coding-Standards/changelog/0.7.0
9455597 
Change log for 0.7.0
JDGrimes added a commit that referenced this pull request Aug 30, 2015
@JDGrimes
Merge pull request #433 from WordPress-Coding-Standards/develop
fb37d21 
0.7.0
@JDGrimes JDGrimes merged commit fb37d21 into master Aug 30, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
0.7.0
Development

Successfully merging this pull request may close these issues.
4 participants
@JDGrimes @westonruter @jtsternberg @GaryJones