You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I know that the readme talks about sanitizing being still unimplemented.
I made this task so that me and others can follow this particular work (couldn't find anything with the search).
We are using Web UI in our project and sometimes new SafeHtml.unsafe(...) even for user-supplied content which is bad, but we have to in order to support custom user-supplied HTML. Our hopes are that sooner or later we can replace those with code that sanitizes the bad input and makes sure it's clean by leveraging a whitelist approach.
The text was updated successfully, but these errors were encountered:
We've created a separate library for white-listing tags, attributes and values that uses this library. We are willing to donate this work. Alternatively, we can work together to meet all your needs.
<img src="https://avatars.githubusercontent.com/u/5479?v=3" align="left" width="96" height="96"hspace="10"> Issue by sethladd
Originally opened as dart-lang/sdk#16694
I know that the readme talks about sanitizing being still unimplemented.
I made this task so that me and others can follow this particular work (couldn't find anything with the search).
We are using Web UI in our project and sometimes new SafeHtml.unsafe(...) even for user-supplied content which is bad, but we have to in order to support custom user-supplied HTML. Our hopes are that sooner or later we can replace those with code that sanitizes the bad input and makes sure it's clean by leveraging a whitelist approach.
The text was updated successfully, but these errors were encountered: