Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[PROD-40813] Allow any tag on safeHtml #379

Merged
merged 2 commits into from
Apr 30, 2024
Merged

[PROD-40813] Allow any tag on safeHtml #379

merged 2 commits into from
Apr 30, 2024

Conversation

klesgidis
Copy link
Contributor

Symmary

  • Allows passing false to rules

See https://www.npmjs.com/package/sanitize-html "What if I want to allow all tags or all attributes?"

@klesgidis klesgidis self-assigned this Apr 29, 2024
manoskouvarakis
manoskouvarakis reviewed Apr 30, 2024
View reviewed changes
src/initializers/joi.ts Outdated
@@ -2,7 +2,7 @@ import * as _Joi from 'joi';
import {isString} from 'lodash';
import * as sanitizeHtml from 'sanitize-html';
import {URL} from 'url';
import { getLogger } from './log4js';
import {getLogger} from './log4js';
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

❓ Should those spaces be removed? Do you maybe have a different rule in linter because on node apps I remember keeping those spaces

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I applied prettier to the whole file

@klesgidis klesgidis merged commit e0cff18 into master Apr 30, 2024
4 checks passed
@klesgidis klesgidis deleted the allow-any-attribute branch April 30, 2024 07:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@manoskouvarakis manoskouvarakis manoskouvarakis approved these changes

@jgerbe jgerbe Awaiting requested review from jgerbe jgerbe is a code owner

@kzacharakis kzacharakis Awaiting requested review from kzacharakis kzacharakis is a code owner

@nikosd23 nikosd23 Awaiting requested review from nikosd23 nikosd23 is a code owner

@nikostoulas nikostoulas Awaiting requested review from nikostoulas nikostoulas is a code owner

@stavros-wb stavros-wb Awaiting requested review from stavros-wb stavros-wb is a code owner

Assignees

@klesgidis klesgidis

Labels
chore
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@klesgidis @manoskouvarakis