Infrastructure/ghost
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2025-02-10 23:36:14 -05:00
Code Issues Activity
ghost/core/server
History
Ryan McCarvill 957f51e677 🐝 Allow unbalanced HTML in markdown card. (#8320) 
no issue

The simpledom interpreter that the Mobiledoc DOM renderer uses does not allow for unbalanced or incorrect HTML such as that which is entered by a user.

This PR adds a step where the HTML is sanitised and balanced before being passed to simpledom.

- use latest jsdom (+pin version), update yarn.lock, add comments
- don't use node-4 incompatible shorthand method definition
- grab <body> content rather than document content
- update markdown card specs to match markdown-it behaviour
- revert to jsdom 9.12.0 for node 4.x support, close window to free memory
- moved 3rd party libs into render function
2017-05-23 16:15:32 +02:00
..
adapters 🎨 Move scheduling and storage in adapters/ (#8435) 2017-05-15 12:52:01 +02:00
admin grunt dev admin livereload (#8176) 2017-03-30 13:27:07 +01:00
api 🎨 Move scheduling and storage in adapters/ (#8435) 2017-05-15 12:52:01 +02:00
apps 🐝 Allow unbalanced HTML in markdown card. (#8320) 2017-05-23 16:15:32 +02:00
auth 🚑 Disable remote authentication (#8346) 2017-04-24 18:56:49 +01:00
blog 🎨 Move scheduling and storage in adapters/ (#8435) 2017-05-15 12:52:01 +02:00
config ️ Throw clear error message when config.url has no protocol (#8466) 2017-05-21 18:00:11 +02:00
controllers/frontend Posts per page as theme-config (#8149) 2017-03-14 18:03:36 +01:00
data 🎨 do not ping slack if we import content (#8476) 2017-05-22 17:24:59 +09:00
events post-scheduling 2016-06-14 10:52:13 +02:00
helpers 🙀 Image field naming & new img_url helper (#8364) 2017-04-24 18:21:47 +01:00
mail 🐛 escape blog title for mail header (#8453) 2017-05-12 15:09:45 +02:00
middleware 🎨 Move scheduling and storage in adapters/ (#8435) 2017-05-15 12:52:01 +02:00
models 🎨 do not ping slack if we import content (#8476) 2017-05-22 17:24:59 +09:00
permissions 🐛 fix invite permissions for editor (#7889) 2017-01-25 12:07:31 +00:00
public 🎨 Use svg icons in default templates (#8343) 2017-05-15 13:43:58 +02:00
settings 🎨 settings inconsistency (#8381) 2017-04-24 18:41:00 +01:00
themes 🎨 Move scheduling and storage in adapters/ (#8435) 2017-05-15 12:52:01 +02:00
translations 🎨 settings inconsistency (#8381) 2017-04-24 18:41:00 +01:00
utils replace custom showdown fork with markdown-it (#8451) 2017-05-15 18:48:14 +02:00
views Asset amends (#8294) 2017-04-10 11:30:21 +02:00
app.js 🐛 Fix the config for compression (#8226) 2017-04-03 10:58:07 +02:00
errors.js 🛠 use Ignition for logging/errors (#7869) 2017-01-23 11:04:01 +00:00
filters.js
ghost-server.js Theme loading part 1 (#7989) 2017-02-22 00:26:19 +01:00
i18n.js 🎨 settings inconsistency (#8381) 2017-04-24 18:41:00 +01:00
index.js 🎨 Move scheduling and storage in adapters/ (#8435) 2017-05-15 12:52:01 +02:00
logging.js 🐛 forward missing logging config: rotation 2017-02-17 18:24:14 +01:00
overrides.js 🛠 update lodash,knex and bookshelf to latest versions 2016-09-26 10:20:55 +02:00
update-check.js 🎨 settings inconsistency (#8381) 2017-04-24 18:41:00 +01:00