diff options
author | Felix Hammerl <fhammerl@thoughtworks.com> | 2016-02-24 10:13:25 +0100 |
---|---|---|
committer | Felix Hammerl <fhammerl@thoughtworks.com> | 2016-02-24 10:20:36 +0100 |
commit | 77ec41bb6f542077503106cacc1dbd28118c50b4 (patch) | |
tree | 7e59c1e5cdffd6146acb6504a9741d394af6a62f /web-ui/app/js/main.js | |
parent | 6160633ab9a54238974af3cf498024ad98fc977e (diff) |
Issue #617: Sanitize received content
Sanitizes received HTML content with DOMPurify, making it safe
for displaying and templating. Sanitizes received plain text content
by encoding every single character as HTML entity.
Diffstat (limited to 'web-ui/app/js/main.js')
-rw-r--r-- | web-ui/app/js/main.js | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/web-ui/app/js/main.js b/web-ui/app/js/main.js index 5fb2e46f..e093e790 100644 --- a/web-ui/app/js/main.js +++ b/web-ui/app/js/main.js @@ -22,6 +22,8 @@ requirejs.config({ 'page': 'js/page', 'feedback': 'js/feedback', 'flight': 'bower_components/flight', + 'DOMPurify': 'bower_components/DOMPurify/dist/purify.min', + 'he': 'bower_components/he/he', 'hbs': 'js/generated/hbs', 'helpers': 'js/helpers', 'lib': 'js/lib', |