Closed fsbraun closed 9 months ago
All modified lines are covered by tests :white_check_mark:
Comparison is base (
964f48d
) 76.41% compared to head (3068e68
) 76.43%.
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
Description
Directly opening SVG images in the browser is a security issue. Hidden javascript can be executed. This PR opens SVG using a simple template with a single
<img>
tag. Other image types are directly sent to the browser.The canonical URL action button does not open the file in a new browser tab any more for security considerations. Instead the canonical URL is copied to the user's clipboard:
Related resources
...
...
Checklist
master