user.js for Bugzilla

Frédéric Buclin lpsolit at
Tue Dec 9 17:45:10 UTC 2014

Le 09. 12. 14 17:49, Mark Côté a écrit :
> Not keen about this either.

I'm opposed to this too. Too easy to shoot yourself in the foot. And if
someone manages to put evil JS code, you are vulnerable to XSS or worse.

And your example about setting the TM automatically is bad. ;) It's too
easy to forget to set it and let Bugzilla guess what the TM must be.
It's much easier to track bugs with no TM set than to track bugs with
the wrong TM set.


More information about the developers mailing list