diff --git a/CHANGELOG.md b/CHANGELOG.md index 4f5d2c5bc6..4c12f0de30 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -12,8 +12,8 @@ _No documentation available about unreleased changes as of yet._ ### Added -- In the WordPressCS v3.0.0, the functionality of the `WordPress.Security.EscapeOutput` sniff was changed to flag the unescaped parameters passed to exceptions in the `throw` statements. This sniff now has more modular error codes based on whether the error happened while checking the exceptions or while outputting unescaped content. The error code has only changed for the exceptions case (now `ExceptionNotEscaped`), and not the rest of the sniff (still `OutputNotEscaped`). This will enable the users to silence the error based on the error code if they need to. -- Props [@anomiex]. +- In the WordPressCS v3.0.0, the functionality of the `WordPress.Security.EscapeOutput` sniff was updated to also flag unescaped parameters passed to exceptions created in `throw` statements. This specific error now has a separate error code: `ExceptionNotEscaped`. This will allow users to ignore/exclude that specific error based on the error code if they need to. Props [@anomiex]. + The error code(s) for other escaping issues flagged by the sniff remain unchanged. ### Changed