Skip to content

fix(CodeBlock): Temporarily drop syntax highlighting #605

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
rebeccaalpert merged 1 commit into from
Jul 28, 2025
Merged

fix(CodeBlock): Temporarily drop syntax highlighting #605

rebeccaalpert merged 1 commit into from
Jul 28, 2025

Conversation

@rebeccaalpert
Copy link
Member

@rebeccaalpert rebeccaalpert commented Jul 15, 2025
edited
Loading

Syntax highlighter has a sub-dependency with a vulnerability. It has not yet been fixed. I would like to drop this for now since it is purely visual and we can investigate a more PatternFly solution. This dependency was brought in by Rohit during early development. I honestly haven't seen many examples where LLMs were specifying the language in code blocks, and this would only impact code blocks with a specified language.

As an alternative, we can manually override some things and keep using this, but I'm concerned that it hasn't been a priority to merge fixes for this. There have been PRs up since March: https://github.com/react-syntax-highlighter/react-syntax-highlighter/pulls.

Before After
Screenshot 2025-07-15 at 11 55 28 AM Screenshot 2025-07-15 at 12 02 15 PM

@rebeccaalpert rebeccaalpert linked an issue Jul 15, 2025 that may be closed by this pull request
prismjs: vulnerability: GHSA-x7hr-w5r2-h6wg #603
Closed
@rebeccaalpert rebeccaalpert marked this pull request as ready for review July 15, 2025 15:54
@patternfly-build
Copy link

patternfly-build commented Jul 15, 2025
edited
Loading

Preview: https://chatbot-pr-chatbot-605.surge.sh

A11y report: https://chatbot-pr-chatbot-605-a11y.surge.sh

@rebeccaalpert rebeccaalpert marked this pull request as draft July 15, 2025 15:57
@rebeccaalpert
fix(CodeBlock): Temporarily drop syntax highlighting
e3dafe3 
Syntax highlighter has a sub-dependency with a vulnerability. It has not yet been fixed. I would like to drop this for now and we can investigate a more PatternFly solution. This dependency was brought in by Rohit during early development.
@rebeccaalpert rebeccaalpert marked this pull request as ready for review July 15, 2025 16:04
@rebeccaalpert rebeccaalpert merged commit ea97a5f into patternfly:main Jul 28, 2025
5 checks passed
@nicolethoen nicolethoen mentioned this pull request Aug 4, 2025
Closed
16 tasks
rebeccaalpert added a commit to rebeccaalpert/virtual-assistant that referenced this pull request Oct 24, 2025
@rebeccaalpert
fix(CodeBlock): Temporarily drop syntax highlighting (patternfly#605)
bc286f1 
Syntax highlighter has a sub-dependency with a vulnerability. It has not yet been fixed. I would like to drop this for now and we can investigate a more PatternFly solution. This dependency was brought in by Rohit during early development.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nicolethoen nicolethoen nicolethoen approved these changes

+1 more reviewer

@thatblindgeye thatblindgeye thatblindgeye approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

prismjs: vulnerability: GHSA-x7hr-w5r2-h6wg

4 participants

@rebeccaalpert @patternfly-build @nicolethoen @thatblindgeye