DMOJ / online-judge

A modern open-source online judge and contest platform system.

https://dmoj.ca

GNU Affero General Public License v3.0

951 stars 364 forks source link

Use correct MIME types for raw submission source #954

Closed quantum5 closed 3 years ago

quantum5 commented 5 years ago

441 introduced the raw submission source view, but it always sends `text/plain`, which is not exactly appropriate. Perhaps future browsers will be able to syntax highlight based on MIME type or something. Who knows?

quantum5 commented 3 years ago

This is probably a bad idea: serving V8JS submissions as application/javascript or even text/javascript is most likely going to be abused to inject JavaScript from a CSP-trusted domain.

DMOJ / online-judge

Use correct MIME types for raw submission source #954

441 introduced the raw submission source view, but it always sends text/plain, which is not exactly appropriate. Perhaps future browsers will be able to syntax highlight based on MIME type or something. Who knows?

441 introduced the raw submission source view, but it always sends `text/plain`, which is not exactly appropriate. Perhaps future browsers will be able to syntax highlight based on MIME type or something. Who knows?