dan/Nertivia-Client
1
0
Fork 0
mirror of https://github.com/danbulant/Nertivia-Client synced 2026-06-09 17:52:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

fixed xss issue with mentions

Browse source
This commit is contained in:
supertiger1234 2020-02-28 21:44:55 +00:00
parent 6599160707
commit 980d778504
1 changed files with 8 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
src/utils/markdown-rules/mentions.js
View file

@ -17,10 +17,14 @@ export default order => {
html: function(node) { html: function(node) {
const member = store.getters["members/members"][node.id]; const member = store.getters["members/members"][node.id];
if (!member) return node.orig; if (!member) return node.orig;
return SimpleMarkdown.htmlTag("span", "@" + member.username, { return SimpleMarkdown.htmlTag(
class: "mention", "span",
id: "mention-" + member.uniqueID "@" + SimpleMarkdown.sanitizeText(member.username),
}); {
class: "mention",
id: "mention-" + member.uniqueID
}
);
} }
}; };
}; };