Strikethrough (<s>) is removed on sanitize #3565
Assignees
Labels
backlog
Out of scope for the current iteration but it will be evaluated in a future release.
Bot Services
Required for internal Azure reporting. Do not delete. Do not change color.
bug
Indicates an unexpected problem or an unintended behavior.
customer-replied-to
Required for internal reporting. Do not delete.
customer-reported
Required for internal Azure reporting. Do not delete.
front-burner
p0
Must Fix. Release-blocker
size-s
1 days or less
Milestone
Comments
wvpm
added
Bot Services
corinagum
changed the title
|
wow, interesting that we added |
corinagum
added
the
customer-replied-to
corinagum
added
size-s
corinagum
added a commit
to corinagum/BotFramework-WebChat
that referenced
this issue
Dec 21, 2020
corinagum
added a commit
that referenced
this issue
Dec 23, 2020
* #3565 Allow <s> on sanitize markdown * Update CHANGELOG.md * Add <del> and <ins> to allowed sanitize tags
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Version
https://cdn.botframework.com/botframework-webchat/4.10.1/webchat.js
Describe the bug
When sending markdown text
"~~test~~"to the customer from the bot without a textFormat property in the activity (so it defaults to markdown), the WebChat shows "test" instead of "test".Additional context
Based on https://github.com/microsoft/BotFramework-WebChat/blob/bbbaeb9c2c46ec61ad109c2dbce46099f87efeba/packages/bundle/src/renderMarkdown.js, I concluded that markdown-it is used to render the markdown. Note that
strikeis allowed as an html tag whilstsis not. According to https://github.com/markdown-it/markdown-it/blob/master/test/fixtures/markdown-it/strikethrough.txt markdown-it converts strikethrough intos. This is subsequently sanitized, which explains the behaviour I experience.I would recommend added
sto the allowed html tag list.[Bug]
The text was updated successfully, but these errors were encountered: