Skip to content

Commit c520210

Browse files
gregre
authored
Merge pull request #478 from tuanaiseo/contribai/fix/security/potential-xss-risk-in-markdown-rendering
Security: Potential XSS risk in markdown rendering helper if reused with untrusted input
2 parents 3db362b + 2c1fd85 commit c520210

1 file changed

Lines changed: 1 addition & 1 deletion

File tree

packages/cookbook/src/markdown.js

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
import React from "react";
22
import remark from "remark";
33
import remarkReactRenderer from "remark-react";
4-
const MD = remark().use(remarkReactRenderer);
4+
const MD = remark().use(remarkReactRenderer, { sanitize: true });
55
function markdown(strings: Array<string>, ...values: Array<string>) {
66
let contents = [];
77
for (let i = 0; i < strings.length; i++) {

0 commit comments

Comments
 (0)