Commit Graph

17 Commits

Author SHA1 Message Date
NGPixel
98bf0d9ccb fix: escape mustache template chars in content 2020-05-08 17:00:02 -04:00
daneallen
4aa7828a92
fix: add rel option to external links in content (#1853)
* #1853: XSS attack fix by adding rel noferrer or rel noopen to _blank target external links

* fix: relAttributeExternalLink noopener

Co-authored-by: danallendds <daniel.allen@friends.dds.mil>
Co-authored-by: Nicolas Giard <github@ngpixel.com>
2020-05-07 16:45:11 -04:00
NGPixel
c81ba5a503 fix: markdown footnotes id incorrectly stripped 2020-05-02 15:13:58 -04:00
NGPixel
281172a9f4 feat: mathjax markdown module 2020-04-29 22:32:03 -04:00
NGPixel
5d43f6ada1 feat: content tabs 2020-04-26 21:04:08 -04:00
NGPixel
17f833509f fix: html sanitizer - whitelist start prop for ol tag 2020-04-17 13:09:08 -04:00
NGPixel
2ff3abe0d8 fix: html sanitizer - whitelist i tag 2020-04-17 13:04:56 -04:00
NGPixel
bacbe4f543 fix: whitelist task list checkboxes 2020-03-21 12:49:25 -04:00
NGPixel
830f51664c feat: katex in markdown preview + xss fix for svg 2020-03-06 14:31:05 -05:00
Nicolas Giard
fba9e0058f
fix: allow figcaption in xss module 2020-02-27 01:17:24 -05:00
NGPixel
09554c8528 fix: add missing html tags to whitelist 2020-02-09 22:54:14 -05:00
NGPixel
90fbc62917 fix: kbd xss whitelist 2020-02-08 16:11:35 -05:00
alancnet
73da73a595 fix: allow highlight color (#1365) 2020-01-10 19:48:16 -05:00
NGPixel
aa5368b2a1 feat: katex + admin SSL UI (wip) + dev warning 2019-12-18 23:45:33 -05:00
NGPixel
278cd7173d feat: rendering security module 2019-12-11 23:36:19 -05:00
Nicolas Giard
578ea577f0 feat: html code highlighter 2018-09-16 00:35:03 -04:00
Nicolas Giard
09d1f580d9 feat: rendering pipeline logic 2018-09-09 20:33:10 -04:00