fix target="_blank" vulnerability

john-science / john-science.github.io

A Blog of Minor Obsessions

http://john-science.github.io/

Apache License 2.0

3 stars 4 forks source link

fix target="_blank" vulnerability #78

Closed john-science closed 6 years ago

john-science commented 6 years ago

Fix the target="_blank" vulnerability. See this.

Essentially, the fix to to search/replace target="_blank" with target="_blank" rel="noopener noreferrer".

john-science commented 6 years ago

It appears that I am limited in the github markdown formatting of links. By default it opens links in target="_blank", but it doesn't add the rel I want.