search

hifarer / vueditor

A wysiwyg editor written in Vue.js and Vuex.js
http://hifarer.github.io/vueditor/
MIT License
645 stars 112 forks source link

security concerns #40

Open gileneusz opened 6 years ago

gileneusz commented 6 years ago

Hi, I've been looking for many wysiwyg editors for vue and vueditor seems to be the best one, because it's simply blazing fast, there are no delays while typing, which is making good user experience.

However... I can't use it because it has some lacing features, which I cannot accept. For example:

Hope this comment will help your team to develop vueditor

hifarer commented 6 years ago

hi, thanks for feed back

  1. XSS is about to arrive, but do not trust any security features in front end.
  2. no format paste is ready in develop branch, and will in the next release
  3. haven't thought it yet
gileneusz commented 6 years ago
  1. great!
  2. happy to hear that!
  3. that's helpful issue - if you don't want user to use ctrl+b - if you don't want allow bold font