liz/wikijs-fork
liz/wikijs-fork
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
1,710 Commits 1 Branch 0 Tags 31 MiB
752ac61bf5
Commit Graph

68 Commits

Author SHA1 Message Date
Иван
79c5b8fac2
fix: security html module removes allow attribute from iframes (#2354) 
* fix: secure html module removes allowfullscreen, allow and frameborder attributes from iframes
* Apply suggestions from code review
fix: remove deprecated attributes for iframe in secure html module

Co-authored-by: Nicolas Giard <github@ngpixel.com>
 2020-09-13 13:55:32 -04:00
NGPixel
8f6cba262f fix: draw.io svgs are no longer removed with linebreaks (#2415) 2020-09-12 14:05:24 -04:00
NGPixel
52d0af19b4 feat: diagram rendering + post-processor (wip) 2020-07-12 15:58:45 -04:00
Regev Brody
41327dd1e8
feat: support MultiMarkdown tables (#2126) 2020-07-03 17:46:07 -04:00
NGPixel
b723d7d626 fix: markdown core props + styles/scripts permissions 2020-06-18 22:49:26 -04:00
Regev Brody
77086a6e0a
feat: optional kroki/plantuml svg caching (#2047) 
* feat: Caching kroki svgs #2020
 2020-06-18 18:39:25 -04:00
Regev Brody
e03a80dccc
feat: underline markdown support (#2073) 
* fix: no markdown support for underline #2072
 2020-06-18 18:37:24 -04:00
Nicolas Giard
9e08718ee9
Merge pull request from GHSA-9jgg-4xj2-vjjj 2020-06-13 21:43:21 -04:00
Regev Brody
037822b994
fix: secure html module removes target attribute from links (#2012) 2020-06-07 19:23:33 -04:00
NGPixel
887e8a0f5a feat: comments disqus + commento 2020-05-21 00:20:57 -04:00
Robert Lanyi
a581d9837a feat: add Kroki renderer (#1900) 
* feat: Kroki integration

see https://kroki.io/

* fix: markdown-kroki def updates

Co-authored-by: Nicolas Giard <github@ngpixel.com>
 2020-05-17 18:41:29 -04:00
NGPixel
1a33a43a0d fix: use semver for latest version check 2020-05-11 00:09:10 -04:00
NGPixel
53da387082 feat: plantuml in markdown preview 2020-05-08 22:51:32 -04:00
NGPixel
98bf0d9ccb fix: escape mustache template chars in content 2020-05-08 17:00:02 -04:00
NGPixel
6a4b25bc28 fix: plantuml deflate raw 2020-05-08 14:15:19 -04:00
daneallen
4aa7828a92
fix: add rel option to external links in content (#1853) 
* #1853: XSS attack fix by adding rel noferrer or rel noopen to _blank target external links

* fix: relAttributeExternalLink noopener

Co-authored-by: danallendds <daniel.allen@friends.dds.mil>
Co-authored-by: Nicolas Giard <github@ngpixel.com>
 2020-05-07 16:45:11 -04:00
NGPixel
c81ba5a503 fix: markdown footnotes id incorrectly stripped 2020-05-02 15:13:58 -04:00
NGPixel
281172a9f4 feat: mathjax markdown module 2020-04-29 22:32:03 -04:00
NGPixel
954262f517 fix: tabs renderer remove switchTab handler 2020-04-26 21:18:51 -04:00
NGPixel
5d43f6ada1 feat: content tabs 2020-04-26 21:04:08 -04:00
NGPixel
514d31a46d feat: hide sidebar option 2020-04-18 18:33:22 -04:00
NGPixel
17f833509f fix: html sanitizer - whitelist start prop for ol tag 2020-04-17 13:09:08 -04:00
NGPixel
2ff3abe0d8 fix: html sanitizer - whitelist i tag 2020-04-17 13:04:56 -04:00
NGPixel
5229390d87 fix: plantuml default markers 2020-03-29 21:14:44 -04:00
NGPixel
5f382f21cf fix: enable mermaid by default 2020-03-29 20:59:35 -04:00
NGPixel
1d16a3fc71 feat: mermaid support for markdown 2020-03-29 20:54:39 -04:00
NGPixel
44a0f69a78 feat: katex chemical equations support 2020-03-29 17:06:32 -04:00
NGPixel
58b08e54b4 fix: missing footnote module in markdown editor preview 2020-03-28 14:28:08 -04:00
NGPixel
bacbe4f543 fix: whitelist task list checkboxes 2020-03-21 12:49:25 -04:00
NGPixel
b529ad21c9 fix: code blocks incorrect escaping + deps update 2020-03-20 23:23:13 -04:00
NGPixel
2810f7b5af feat: use local assets for twemoji 2020-03-15 22:34:42 -04:00
NGPixel
830f51664c feat: katex in markdown preview + xss fix for svg 2020-03-06 14:31:05 -05:00
Nicolas Giard
fba9e0058f
fix: allow figcaption in xss module 2020-02-27 01:17:24 -05:00
NGPixel
2d06a1d9df fix: set open external link in new tab as an option 2020-02-22 20:21:26 -05:00
Lukáš Hrdlička
fc79d92423
feat: open external link in new tab (#1453) 2020-02-22 20:15:41 -05:00
NGPixel
09554c8528 fix: add missing html tags to whitelist 2020-02-09 22:54:14 -05:00
NGPixel
90fbc62917 fix: kbd xss whitelist 2020-02-08 16:11:35 -05:00
alancnet
73da73a595 fix: allow highlight color (#1365) 2020-01-10 19:48:16 -05:00
NGPixel
0755c538ed fix: html rendering order param + decodeEntities 2020-01-03 01:07:29 -05:00
NGPixel
edd11cd73f feat: make relative links root absolute option 2020-01-02 20:30:48 -05:00
NGPixel
82376c19b9 fix: render system link detection resets on each find 2020-01-02 13:33:27 -05:00
Scott Simontis
bb03aed1c8 fix: exclude tel: links from parsing #1318 (#1344) 
Telephone links will no longer be incorrectly parsed as web links.

Signed-off-by: Scott Simontis <yo@scottsimontis.io>
 2019-12-31 14:41:05 -05:00
NGPixel
f09f1f4f1e feat: delete a user 2019-12-22 16:08:18 -05:00
NGPixel
3b347f262c feat: save rendering configuration 2019-12-21 16:41:03 -05:00
NGPixel
aa5368b2a1 feat: katex + admin SSL UI (wip) + dev warning 2019-12-18 23:45:33 -05:00
NGPixel
278cd7173d feat: rendering security module 2019-12-11 23:36:19 -05:00
NGPixel
e35e68d764 fix: exclude assets from internal link detection (#1189) 2019-11-23 16:13:41 -05:00
NGPixel
46630e1638 fix: allow target in markdown attrs (#1240) 2019-11-21 22:32:41 -05:00
George Vagenas
68200f5136 fix: use https for plantuml (#1223) 2019-11-18 13:51:19 -05:00
NGPixel
fb0c64a07e fix: exclude non-class attributes from markdown rendering 2019-11-16 22:19:35 -05:00