Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: only escape iframe,script and link for html output #3882

Merged
merged 1 commit into from
Jan 9, 2024

Conversation

dvikan
Copy link
Contributor

@dvikan dvikan commented Jan 9, 2024

fix #3880

@dvikan dvikan merged commit 2e5d2a8 into RSS-Bridge:master Jan 9, 2024
7 checks passed
@dvikan dvikan deleted the fix-162 branch January 9, 2024 20:36
truecharts-admin referenced this pull request in truecharts/public Feb 5, 2024
…02@1a4d30c by renovate (#17967)

This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [rssbridge/rss-bridge](https://togithub.com/RSS-Bridge/rss-bridge) |
major | `2023-09-24` -> `2024-02-02` |

---

> [!WARNING]
> Some dependencies could not be looked up. Check the Dependency
Dashboard for more information.

---

### Release Notes

<details>
<summary>RSS-Bridge/rss-bridge (rssbridge/rss-bridge)</summary>

###
[`v2024-02-02`](https://togithub.com/RSS-Bridge/rss-bridge/releases/tag/2024-02-02):
RSS-Bridge 2024-02-02

[Compare
Source](https://togithub.com/RSS-Bridge/rss-bridge/compare/2023-09-24...2024-02-02)

**Zero breaking changes**

Recommended to checkout revised installation instructions for Debian 12:


https://github.com/RSS-Bridge/rss-bridge#how-to-install-on-debian-12-nginx--php-fpm

Officially hosted instance: https://rss-bridge.org/bridge01/

IRC channel #rssbridge at https://libera.chat/

Thank you to all contributors who keeps the project alive.

#### A subset of changes which might be interesting

Rss-Bridge can now be password protected with required token in the url:

```diff
--- config.ini.php	2024-02-02 18:41:36.881743962 +0100
+++ /tmp/1	2024-02-02 18:42:00.289567705 +0100
@&#8203;@&#8203; -92,7 +92,7 @&#8203;@&#8203;
 password = ""
 
 ; Token authentication (URL)
-token = ""
+token = "hunter2"
```

- chore: add tools for manually administrating the configured cache by
[@&#8203;dvikan](https://togithub.com/dvikan) in
[https://github.com/RSS-Bridge/rss-bridge/pull/3867](https://togithub.com/RSS-Bridge/rss-bridge/pull/3867)
- fix: only escape iframe,script and link for html output by
[@&#8203;dvikan](https://togithub.com/dvikan) in
[https://github.com/RSS-Bridge/rss-bridge/pull/3882](https://togithub.com/RSS-Bridge/rss-bridge/pull/3882)
- \[AnnasArchiveBridge] Add new bridge by
[@&#8203;Phantop](https://togithub.com/Phantop) in
[https://github.com/RSS-Bridge/rss-bridge/pull/3888](https://togithub.com/RSS-Bridge/rss-bridge/pull/3888)
- feat: add etag support to getContents by
[@&#8203;dvikan](https://togithub.com/dvikan) in
[https://github.com/RSS-Bridge/rss-bridge/pull/3893](https://togithub.com/RSS-Bridge/rss-bridge/pull/3893)
- fix: add cache clearing tools by
[@&#8203;dvikan](https://togithub.com/dvikan) in
[https://github.com/RSS-Bridge/rss-bridge/pull/3896](https://togithub.com/RSS-Bridge/rss-bridge/pull/3896)
- feat: token authentication by
[@&#8203;dvikan](https://togithub.com/dvikan) in
[https://github.com/RSS-Bridge/rss-bridge/pull/3927](https://togithub.com/RSS-Bridge/rss-bridge/pull/3927)
- \[FirefoxReleaseNotesBridge] Add New Bridge by
[@&#8203;tillcash](https://togithub.com/tillcash) in
[https://github.com/RSS-Bridge/rss-bridge/pull/3930](https://togithub.com/RSS-Bridge/rss-bridge/pull/3930)
- Fix Docker exec by [@&#8203;Alkarex](https://togithub.com/Alkarex) in
[https://github.com/RSS-Bridge/rss-bridge/pull/3941](https://togithub.com/RSS-Bridge/rss-bridge/pull/3941)

#### New Contributors

- [@&#8203;m3nu](https://togithub.com/m3nu) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3778](https://togithub.com/RSS-Bridge/rss-bridge/pull/3778)
- [@&#8203;itsLameni](https://togithub.com/itsLameni) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3789](https://togithub.com/RSS-Bridge/rss-bridge/pull/3789)
- [@&#8203;wpdevelopment11](https://togithub.com/wpdevelopment11) made
their first contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3793](https://togithub.com/RSS-Bridge/rss-bridge/pull/3793)
- [@&#8203;SebLaus](https://togithub.com/SebLaus) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3786](https://togithub.com/RSS-Bridge/rss-bridge/pull/3786)
- [@&#8203;knrdl](https://togithub.com/knrdl) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3800](https://togithub.com/RSS-Bridge/rss-bridge/pull/3800)
- [@&#8203;RayBB](https://togithub.com/RayBB) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3823](https://togithub.com/RSS-Bridge/rss-bridge/pull/3823)
- [@&#8203;glacasa](https://togithub.com/glacasa) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3825](https://togithub.com/RSS-Bridge/rss-bridge/pull/3825)
- [@&#8203;xz47sv](https://togithub.com/xz47sv) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3835](https://togithub.com/RSS-Bridge/rss-bridge/pull/3835)
- [@&#8203;bkidwell](https://togithub.com/bkidwell) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3843](https://togithub.com/RSS-Bridge/rss-bridge/pull/3843)
- [@&#8203;xduugu](https://togithub.com/xduugu) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3854](https://togithub.com/RSS-Bridge/rss-bridge/pull/3854)
- [@&#8203;tillcash](https://togithub.com/tillcash) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3862](https://togithub.com/RSS-Bridge/rss-bridge/pull/3862)
- [@&#8203;crisukbot](https://togithub.com/crisukbot) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3877](https://togithub.com/RSS-Bridge/rss-bridge/pull/3877)
- [@&#8203;hleskien](https://togithub.com/hleskien) made their first
contribution in
[https://github.com/RSS-Bridge/rss-bridge/pull/3920](https://togithub.com/RSS-Bridge/rss-bridge/pull/3920)

**Full Changelog**:
RSS-Bridge/rss-bridge@2023-09-24...2024-02-02

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "before 10pm on monday" in timezone
Europe/Amsterdam, Automerge - At any time (no schedule defined).

🚦 **Automerge**: Enabled.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Renovate
Bot](https://togithub.com/renovatebot/renovate).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xNzIuNCIsInVwZGF0ZWRJblZlciI6IjM3LjE3Mi40IiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

How to stop RSS-Bridge from escaping/sanitizing html?
1 participant