aljaz/njump
1
0
Fork 0
mirror of https://github.com/aljazceru/njump.git synced 2025-12-17 22:34:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

Use a specific xss sanitizer for long form content

Browse Source
This commit is contained in:
Daniele Tonon
2023-06-02 23:59:17 +02:00
parent ddaba769f9
commit 44f9c07ee5
9 changed files with 78 additions and 54 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
render.go
View File

@@ -252,7 +252,8 @@ func render(w http.ResponseWriter, r *http.Request) {
funcMap := template.FuncMap{
"basicFormatting": basicFormatting,
"mdToHTML": mdToHTML,
"sanitizeString": html.EscapeString,
"escapeString": html.EscapeString,
"sanitizeXSS": sanitizeXSS,
}
tmpl := template.Must(