Skip to content

Base list of allowed HTML tags and attributes on the Ammonia defaults #1872

New issue
New issue
Closed
#1876
Closed
Base list of allowed HTML tags and attributes on the Ammonia defaults#1872
#1876
Labels
A-readmeC-enhancement ✨Category: Adding new behavior or a change to the way an existing feature worksE-help-wanted
@smarnach

Description

@smarnach
smarnach
opened on Oct 16, 2019

Our readme renderer uses Ammonia to sanitise the HTML. We currently explicitly list all HTML tags and attributes we allow in the source code. To simplify this code, and to allow some additional safe attributes we currently don't allow, we could rely on Ammonia's defaults instead, and add any additional items we may need.

Suggested steps:

  • Consider upgrading to the latest Ammonia release.
  • Compare the list of currently allowed tags in crates.io to the defaults in Ammonia.
  • Update the code to in MarkdownRenderer::new() (linked above) to only add these additional tags to the defaults.

Metadata

Metadata

Assignees

No one assigned

    Labels

    A-readmeC-enhancement ✨Category: Adding new behavior or a change to the way an existing feature worksE-help-wanted

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions