Changeset 47645 for branches/5.2/src/wp-includes/blocks/rss.php

Timestamp:

04/29/2020 04:05:32 PM (6 years ago)

Author:

whyisjake

Message:

Customize: Add additional filters to Customizer to prevent JSON corruption.
User: Invalidate user_activation_key on password update.
Query: Ensure that only a single post can be returned on date/time based queries.
Block Editor: Coding standards, properly escape class names.
Cache API: Ensure proper escaping around the stats method in the cache API.
Formatting: Expand sanitize_file_name to have better support for utf8 characters.

Brings the changes in [47633], [47634], [47635], [47636], [47637], and [47638] to the 5.2 branch.

Props: aduth, batmoo, ehti, ellatrix, jorgefilipecosta, nickdaugherty, noisysocks, pento, peterwilsoncc, sergeybiryukov, sstoqnov, talldanwp, westi, westonruter, whyisjake, whyisjake, xknown.

Location:

branches/5.2

Files:

• . (modified) (1 prop)
• src/wp-includes/blocks/rss.php (modified) (2 diffs)

branches/5.2/src/wp-includes/blocks/rss.php

@@ -81 +81 @@
 
     $classes           = 'grid' === $attributes['blockLayout'] ? ' is-grid columns-' . $attributes['columns'] : '';
-    $list_items_markup = "<ul class='wp-block-rss{$classes}'>{$list_items}</ul>";
+    $list_items_markup = sprintf( "<ul class='%s'>%s</ul>", esc_attr( 'wp-block-rss' . $classes ), $list_items );
 
     // PHP 5.2 compatibility. See: http://simplepie.org/wiki/faq/i_m_getting_memory_leaks.
@@ -94 +94 @@
  */
 function register_block_core_rss() {
-    register_block_type( 'core/rss',
+    register_block_type(
+        'core/rss',
         array(
             'attributes'      => array(