Commit 8a5bf011 authored by Dmitriy Zaporozhets's avatar Dmitriy Zaporozhets Committed by Jacob Vosmaer

Shell escape code search

parent 6c067380
...@@ -6,7 +6,7 @@ class SearchContext ...@@ -6,7 +6,7 @@ class SearchContext
end end
def execute def execute
query = params[:search] query = Shellwords.shellescape(params[:search])
return result unless query.present? return result unless query.present?
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment