zulip/static/templates/settings/upgrade_tip_widget.hbs
Tim Abbott a2767e8c50 CVE-2020-14194: Use noopener/noreferrer for external links.
We fixed the main issue of this form in CVE-2020-9444, but the audit
done at that time only included links found in rendered_markdown; this
change completes our audit for links with target=_blank anywhere in
the codebase.
2020-06-16 23:35:39 -07:00

8 lines
218 B
Handlebars

<div>
{{#unless zulip_plan_is_not_limited}}
<a href="/upgrade" class="upgrade-tip" target="_blank" rel="noopener noreferrer">
{{upgrade_text_for_wide_organization_logo}}
</a>
{{/unless}}
</div>