Glossary: prohibited initial character in a CSV element

[nijel]

Describe the issue

Machine translation using Amazon Translate crashes:

machinery[Amazon Translate]: Could not fetch translations: InvalidParameterValueException: An error occurred (InvalidParameterValueException) when calling the ImportTerminology operation: Text at line: 54 contains a prohibited initial character in a CSV element, which can lead to CSV Injection. Any cell in a CSV file may not start with the characters [=+@-], due to the potential risk for CSV injection. Please remove these characters : [=+@-] from beginning of CSV cell text.

I already tried

• I've read and searched the documentation.
• I've searched for similar filed issues in this repository.

Steps to reproduce the behavior

1. Add term to glossary starting with =.
2. Configure Amazon Translate.
3. Try using automatic suggesstions.

Expected behavior

Suggestions should not fail.

Screenshots

No response

Exception traceback

No response

How do you run Weblate?

weblate.org service

Weblate versions

No response

Weblate deploy checks

No response

Additional context

There are two possible solutions to this:

• Exclude such terms from CSV export.
• Strip problematic characters.

There is an existing string filter for CSV implemented in exporters which could be reused:

weblate/weblate/formats/exporters.py

Lines 228 to 241 in 64aa009

	def string_filter(self, text):
	"""
	Avoid Excel interpreting text as formula.
	This is really bad idea, implemented in Excel, as this change leads to
	displaying additional ' in all other tools, but this seems to be what most
	people have gotten used to. Hopefully these characters are not widely used at
	first position of translatable strings, so that harm is reduced.
	Reverse for this is in weblate.formats.ttkit.CSVUnit.unescape_csv
	"""
	if text and text[0] in {"=", "+", "-", "@", "|", "%"}:
	return "'{}'".format(text.replace("|", "\\|"))
	return text