Skip to content

PM-3072 - markdown for aiworkflow desc #1337

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 25, 2025
Merged

PM-3072 - markdown for aiworkflow desc #1337

merged 1 commit into from
Nov 25, 2025

Conversation

@vas3a
Copy link
Collaborator

@vas3a vas3a commented Nov 25, 2025

Related JIRA Ticket:

https://topcoder.atlassian.net/browse/

What's in this PR?

github-actions[bot]
github-actions bot reviewed Nov 25, 2025
View reviewed changes
src/apps/review/src/pages/reviews/components/AiModelModal/AiModelModal.tsx

<p className={styles.modelDescription}>
{props.model.description}
<MarkdownReview value={props.model.description} />
Copy link

@github-actions github-actions bot Nov 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[❗❗ security]
Ensure that props.model.description is sanitized before rendering with MarkdownReview to prevent potential XSS vulnerabilities. If MarkdownReview handles sanitization internally, this can be ignored.

github-actions[bot]
github-actions bot reviewed Nov 25, 2025
View reviewed changes
src/apps/review/src/pages/reviews/components/ScorecardHeader/ScorecardHeader.tsx
</div>
<p className={styles.workflowDescription}>
{workflow.description}
<MarkdownReview value={workflow.description} />
Copy link

@github-actions github-actions bot Nov 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[❗❗ security]
Ensure that workflow.description is properly sanitized before being passed to MarkdownReview to prevent potential XSS vulnerabilities if description contains user-generated content.

@vas3a vas3a merged commit 6f77e6c into dev Nov 25, 2025
8 checks passed
@vas3a vas3a deleted the PM-3072_markdown-for-aiworkflow-desc branch November 25, 2025 14:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] left review comments

@jmgasper jmgasper Awaiting requested review from jmgasper jmgasper is a code owner

@kkartunov kkartunov Awaiting requested review from kkartunov kkartunov is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@vas3a