HTML agenda sanitization breaks inline <style> #2470
Comments
|
@henrik@levkowetz.com changed status from |
|
@henrik@levkowetz.com changed resolution from `` to |
|
@henrik@levkowetz.com commented Fixed in 428c451: Added a missing tag to the sanitizer whitelist (telling lxml's Cleaner to not clean style with style=False is apparently not always enough). Fixes issue #2470. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
keyword_html_santitize_css_styleresolution_fixedtype_defect| by trammell@tik.ee.ethz.chThe sanitizer appears, in at least one case (https://datatracker.ietf.org/meeting/101/materials/agenda-101-panrg), to strip the <style> and </style> tags, leaving their content, so CSS directives appear as HTML.
The original of the file in question is at https://github.com/panrg/meeting-materials/blob/master/ietf101-london/agenda.html. It was generated from https://github.com/panrg/meeting-materials/blob/master/ietf101-london/agenda.md by https://github.com/panrg/meeting-materials/blob/master/ietf101-london/mkagenda.sh using the stylesheet at https://github.com/panrg/meeting-materials/blob/master/ietf101-london/agenda.css.
Issue migrated from trac:2470 at 2022-03-04 06:40:54 +0000
The text was updated successfully, but these errors were encountered: