Closed theacodes closed 6 years ago
@dstufft (& @di) it would be great if you can take a quick look at this due to me relaxing the filter.
Can align be used to do anything nefarious?
Not that I'm aware of (we already allow it on the table family of tags)
Thanks, @dstufft!
This doesn't work (yet?) See: https://github.com/dcowden/cadquery/issues/288
@westurner It seems like something has changed and those images are being rendered with the style
attribute instead, which is being removed by PyPI:
<img
alt="https://www.python.org/static/community_logos/python-logo-master-v3-TM.png"
src="https://www.python.org/static/community_logos/python-logo-master-v3-TM.png"
style="width: 100px;"
>
@theacodes any ideas?
Oh, looks like we just haven't released #114 yet.
See the comment re bleach.sanitizer.ALLOWED_STYLES
on #114.
https://bleach.readthedocs.io/en/latest/clean.html#allowed-styles-styles
On Saturday, September 15, 2018, Dustin Ingram notifications@github.com wrote:
Oh, looks like we just haven't released #114 https://github.com/pypa/readme_renderer/pull/114 yet.
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/pypa/readme_renderer/pull/91#issuecomment-421662665, or mute the thread https://github.com/notifications/unsubscribe-auth/AADGy83GBwmQAsuHup5jcNcHhcI7GXQbks5ubZ77gaJpZM4TUWz_ .
Fixes #44.
Note: warehouse sets
max-width: 100%
for allimg
tags within the project description. This prevents users from being able to completely break the page layout if they setwidth
to something ludicrous such as100000%
.