4b9a473e12
- Backport of https://codeberg.org/forgejo/forgejo/pulls/1433
- Currently the repository description uses the same sanitizer as a
normal markdown document. This means that element such as heading and
images are allowed and can be abused.
- Create a minimal restricted sanitizer for the repository description,
which only allows what the postprocessor currently allows, which are
links and emojis.
- Added unit testing.
- Resolves https://codeberg.org/forgejo/forgejo/issues/1202
- Resolves https://codeberg.org/Codeberg/Community/issues/1122
(cherry picked from commit
|
||
---|---|---|
.. | ||
asciicast | ||
common | ||
console | ||
csv | ||
external | ||
markdown | ||
mdstripper | ||
orgmode | ||
camo.go | ||
camo_test.go | ||
html.go | ||
html_internal_test.go | ||
html_test.go | ||
renderer.go | ||
renderer_test.go | ||
sanitizer.go | ||
sanitizer_test.go |