CalvinBackup/anonymous_github
1
0
Fork 0
mirror of https://github.com/tdurieux/anonymous_github.git synced 2026-06-06 07:33:55 +02:00
Code Issues Packages Projects Releases Wiki Activity

Sanitize markdown HTML output with DOMPurify to prevent XSS (#658)

Browse Source
This commit is contained in:
Thomas Durieux
2026-04-15 04:22:38 +02:00
committed by GitHub
parent b2d77faa6c
commit 812f8b6314
6 changed files with 1299 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
public/script/bundle.min.js
Vendored
+1 -1
View File
File diff suppressed because one or more lines are too long
public/script/utils.js
+1 -1
View File
@@ -182,5 +182,5 @@ function renderMD(md, baseUrlValue) {
throwOnError: false,
})
);
return marked.parse(md, { renderer });
return DOMPurify.sanitize(marked.parse(md, { renderer }));
}