indymedia
/
epicyon
mirror of https://gitlab.com/bashrc2/epicyon
7
4
Fork 1
Code Issues 14 Releases Wiki Activity

Avoid svg image links within content

main
Bob Mottram 2023-05-30 10:07:51 +01:00
parent 276f9fc6a6
commit a191e0b6e8
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
utils.py
View File

@ -1221,6 +1221,8 @@ def dangerous_markup(content: str, allow_local_network_access: bool,
allow_tags: []) -> bool:
"""Returns true if the given content contains dangerous html markup
"""
if '.svg' in content.lower():
return True
separators = [['<', '>'], ['&lt;', '&gt;']]
invalid_strings = [
'ampproject', 'googleapis', '_exec(', ' id=', ' name='