github/plane
0
0
Fork 1
mirror of https://github.com/makeplane/plane synced 2024-06-14 14:31:34 +00:00
Code Issues Packages Projects Releases Wiki Activity

regression: reverted link checks of malicious scripts

Browse Source
This commit is contained in:
Palanikannan1437 2024-01-19 11:01:25 +05:30
parent 3557bc024b
commit 0082eff4a0
1 changed files with 17 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
packages/editor/core/src/ui/extensions/custom-link/index.tsx
View File

@ -100,11 +100,26 @@ export const CustomLinkExtension = Mark.create<LinkOptions>({
},
parseHTML() {
return [{ tag: 'a[href]:not([href *= "javascript:" i])' }];
return [
{
tag: "a[href]",
getAttrs: (node) => {
if (typeof node === "string" || !(node instanceof HTMLElement)) {
return null;
}
const href = node.getAttribute("href")?.toLowerCase() || "";
if (href.startsWith("javascript:") || href.startsWith("data:") || href.startsWith("vbscript:")) {
return false;
}
return {};
},
},
];
},
renderHTML({ HTMLAttributes }) {
if (HTMLAttributes.href?.startsWith("javascript:")) {
const href = HTMLAttributes.href?.toLowerCase() || "";
if (href.startsWith("javascript:") || href.startsWith("data:") || href.startsWith("vbscript:")) {
return ["a", mergeAttributes(this.options.HTMLAttributes, { ...HTMLAttributes, href: "" }), 0];
}
return ["a", mergeAttributes(this.options.HTMLAttributes, HTMLAttributes), 0];