Changes before error encountered

Copilot · hotlong · Copilot · commit 0ee96e39c85a · 2026-01-14T16:41:32.000Z
Co-authored-by: hotlong &lt;50353452+hotlong@users.noreply.github.com&gt;
diff --git a/packages/plugin-charts/src/AdvancedChartImpl.tsx b/packages/plugin-charts/src/AdvancedChartImpl.tsx
@@ -19,6 +19,9 @@ import {
   ChartConfig
 } from './ChartContainerImpl';
 
+// Default color fallback for chart series
+const DEFAULT_CHART_COLOR = 'hsl(var(--chart-1))';
+
 export interface AdvancedChartImplProps {
   chartType?: 'bar' | 'line' | 'area';
   data?: Array<Record<string, any>>;
@@ -60,7 +63,7 @@ export default function AdvancedChartImpl({
         <ChartTooltip content={<ChartTooltipContent />} />
         <ChartLegend content={<ChartLegendContent />} />
         {series.map((s: any) => {
-          const color = config[s.dataKey]?.color || 'hsl(var(--chart-1))';
+          const color = config[s.dataKey]?.color || DEFAULT_CHART_COLOR;
           
           if (chartType === 'bar') {
             return <Bar key={s.dataKey} dataKey={s.dataKey} fill={color} radius={4} />;
diff --git a/packages/plugin-kanban/src/KanbanImpl.tsx b/packages/plugin-kanban/src/KanbanImpl.tsx
@@ -197,7 +197,12 @@ export default function KanbanBoard({ columns, onCardMove, className }: KanbanBo
       const activeCards = [...activeColumn.cards]
       const overCards = [...overColumn.cards]
       const activeIndex = activeCards.findIndex((c) => c.id === activeId)
-      const overIndex = overId === overColumn.id ? overCards.length : overCards.findIndex((c) => c.id === overId)
+      
+      // Calculate target index: if dropping on column itself, append to end; otherwise insert at card position
+      const isDroppingOnColumn = overId === overColumn.id
+      const overIndex = isDroppingOnColumn 
+        ? overCards.length 
+        : overCards.findIndex((c) => c.id === overId)
 
       const [movedCard] = activeCards.splice(activeIndex, 1)
       overCards.splice(overIndex, 0, movedCard)
diff --git a/packages/plugin-markdown/src/MarkdownImpl.tsx b/packages/plugin-markdown/src/MarkdownImpl.tsx
@@ -52,6 +52,10 @@ export default function MarkdownImpl({ content, className }: MarkdownImplProps)
       <ReactMarkdown 
         remarkPlugins={[remarkGfm]}
         rehypePlugins={[rehypeSanitize]}
+        // Additional security: only allow safe elements
+        // This provides defense-in-depth beyond rehype-sanitize
+        disallowedElements={['script', 'style', 'iframe', 'object', 'embed']}
+        unwrapDisallowed={true}
       >
         {content}
       </ReactMarkdown>
