sourcegraph / openctx

See contextual info about code from your dev tools, in your editor, code review, and anywhere else you read code.
https://openctx.org
Apache License 2.0
149 stars 17 forks source link

Sanitizing html in web provider #173

Open mohammadualam opened 3 months ago

mohammadualam commented 3 months ago

The code in the openctx provider has some regex that takes out various tags. However, our sast scanning reports that this should still be sanitized so this code implements dompurify to do just that.