diff options
author | Philip Molares | 2021-01-14 02:51:08 +0100 |
---|---|---|
committer | Philip Molares | 2021-01-14 11:18:09 +0100 |
commit | 35b0d39a12aa35f27fba8c1f50b1886706e7efef (patch) | |
tree | 0c68fd53b5d2913eb31f04c6e76b78d8e1ab41de /lib/web/auth/ldap/index.js | |
parent | 5bdb39241374afc3da801a4032ebc306f8562035 (diff) |
added sanitation to the slideMode in frontmatter
This should prevent the issue mentioned in https://github.com/hackmdio/codimd/issues/1648
Specifically left out are
- dependency (user can't really include anything anyway, because CSP forbids most domains)
- autoSlideMethod (nothing our users should be able to change as they won't write JS to be affected by this)
- keyboard (this let's users write arbitrary code and seems therefore to problematic)
See:
https://github.com/hakimel/reveal.js/blob/3.9.2/README.md#configuration
Signed-off-by: Philip Molares <philip.molares@udo.edu>
Diffstat (limited to '')
0 files changed, 0 insertions, 0 deletions