Add DOMPurify and sanitize puzzle and lab descriptions

eternagame / eterna-mobile

Eterna mobile app

BSD 3-Clause "New" or "Revised" License

2 stars 0 forks source link

Add DOMPurify and sanitize puzzle and lab descriptions #53

Closed tkaragianes closed 2 years ago

tkaragianes commented 2 years ago

Closes #48. User provided descriptions of puzzles and labs often include HMTL styling, links, images, etc. Now this HTML will properly render, after being sanitized by DOMPurify to protect against XSS attacks.

tkaragianes commented 2 years ago

Good catch on the Eterna revert.