gitea

mirror of https://github.com/go-gitea/gitea synced 2025-01-11 04:26:01 +01:00

History

KN4CK3R ab54310731 Disallow dangerous URL schemes (#25960 ) (#25964 ) Regression: https://github.com/go-gitea/gitea/pull/24805 Closes: #25945 - Disallow `javascript`, `vbscript` and `data` (data uri images still work) url schemes even if all other schemes are allowed - Fixed older `cbthunderlink` tests --------- Co-authored-by: delvh <dev.lh@web.de>		2023-07-18 19:48:52 +00:00
..
asciicast
common
console
csv
external
markdown	Replace `interface{}` with `any` (#25686 ) (#25687 )	2023-07-04 23:41:32 -04:00
mdstripper
orgmode
camo_test.go
camo.go
html_internal_test.go	Replace `interface{}` with `any` (#25686 ) (#25687 )	2023-07-04 23:41:32 -04:00
html_test.go	Refactor path & config system (#25330 ) (#25416 )	2023-06-22 16:27:18 +00:00
html.go	Add RTL rendering support to Markdown (#24816 )	2023-05-20 23:02:52 +02:00
renderer_test.go
renderer.go	Add RTL rendering support to Markdown (#24816 )	2023-05-20 23:02:52 +02:00
sanitizer_test.go	Disallow dangerous URL schemes (#25960 ) (#25964 )	2023-07-18 19:48:52 +00:00
sanitizer.go	Disallow dangerous URL schemes (#25960 ) (#25964 )	2023-07-18 19:48:52 +00:00