0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2024-12-25 08:54:17 -05:00
forgejo/modules/markup
zeripath 172229966c
Prevent panic on fuzzer provided string (#14405)
* Prevent panic on fuzzer provided string

The fuzzer has found that providing a <body> tag with an attribute to
PostProcess causes a panic. This PR removes any rendered html or body
tags from the output.

Signed-off-by: Andrew Thornton <art27@cantab.net>

* Placate lint

* placate lint again

Signed-off-by: Andrew Thornton <art27@cantab.net>

* minor cleanup

Signed-off-by: Andrew Thornton <art27@cantab.net>
2021-01-20 23:10:50 +08:00
..
common Don't replace underscores in auto-generated IDs in goldmark (#12805) 2020-09-12 12:00:48 -04:00
csv
external
markdown Markdown task list improvements (#13952) 2020-12-13 09:05:50 +08:00
mdstripper
orgmode fix: media links in org files not liked to media files (#12997) 2020-10-01 11:22:34 -04:00
html.go Prevent panic on fuzzer provided string (#14405) 2021-01-20 23:10:50 +08:00
html_internal_test.go
html_test.go Prevent panic on fuzzer provided string (#14405) 2021-01-20 23:10:50 +08:00
markup.go
markup_test.go
sanitizer.go Markdown task list improvements (#13952) 2020-12-13 09:05:50 +08:00
sanitizer_test.go Markdown task list improvements (#13952) 2020-12-13 09:05:50 +08:00