Chill-project/chill-bundles
6
0
Fork 0
mirror of https://gitlab.com/Chill-Projet/chill-bundles.git synced 2025-08-05 07:19:49 +00:00
Code Issues Actions Projects Releases Wiki Activity

Add use of DOMPurify to sanitize text from possible injection

Browse Source
This commit is contained in:
Julie Lenaerts 2023-11-09 19:21:52 +01:00
parent cd793d6842
commit 8363c5c3cf
1 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/DashboardWidgets/News.vue
View File

@ -30,6 +30,8 @@ import { onMounted, ref } from 'vue'
import {makeFetch} from "ChillMainAssets/lib/api/apiMethods";
import Modal from '../../_components/Modal.vue'; // Adjust the import path
import { marked } from 'marked';
import DOMPurify from 'dompurify';
const newsItems = ref([])
@ -59,7 +61,11 @@ const truncateContent = (content, maxLength = 100) => {
};
const convertMarkdownToHtml = (markdown) => {
return marked(markdown);
const rawHtml = marked(markdown);
return rawHtml;
/* console.log('rawhtml', rawHtml)
console.log('sanitized', DOMPurify.sanitize(rawHtml))
return DOMPurify.sanitize(rawHtml)*/
};
const truncateMarkdownContent = (content, maxLength = 100) => {