summaryrefslogtreecommitdiff
path: root/public (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Fix stored XSS in the graphviz error message rendering [Security Issue]Max Wu2019-04-161-6/+7
| | | | | | Signed-off-by: Max Wu <jackymaxj@gmail.com> Co-Authored-By: Sheogorath <sheogorath@shivering-isles.com>
* Add community forum to help sectionSheogorath2019-04-121-2/+4
| | | | | | | | | | | We have a community forum and want to use it for users support and to bring developers and end-users together. In order to achieve this, it would be helpful to inform users about its existence. This patch adds the community forum as resource to the help section and aligns it along the Matrix channel and GitHub issue tracker. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Clean up headingsHenrik "HerHde" Hüttemann2019-04-041-147/+173
| | | | Signed-off-by: Henrik "HerHde" Hüttemann <mail@herh.de>
* Add new screenshotSheogorath2019-04-011-0/+0
| | | | | | | | | | | | The old screenshot is quite dated since it's from the earlier days of HackMD. But we developed a lot in the recent years. Changed the name, added a toolbar, moved buttons, and so on. This patch should represent those changes in the front page. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Add missing space to footerHenrik Hüttemann2019-04-011-1/+1
| | | | Signed-off-by: Henrik "HerHde" Hüttemann <mail@herh.de>
* striving for consistency across various docsClaudius2019-04-012-2/+2
| | | | Signed-off-by: Claudius <opensource@amenthes.de>
* Merge pull request #9 from SISheogorath/feature/moveUploadChristoph (Sheogorath) Kern2019-03-315-23/+13
|\ | | | | Move upload button into toolbar
| * Move upload button into toolbarSheogorath2019-03-255-23/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | Currently we have the odd situation to have two toolbars. One inside the header and one in the editor. Since we only show the image upload button when the editor is visible we should move the upload button into the editor toolbar. This patch does this by adding the image upload button besides the image tag button. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Merge pull request #8 from SISheogorath/fix/languagesChristoph (Sheogorath) Kern2019-03-311-6/+6
|\ \ | | | | | | Fix capital letters in language selection
| * | Fix capital letters in language selectionSheogorath2019-03-241-6/+6
| |/ | | | | | | | | | | | | | | | | | | | | | | | | Vladan[1] gave a hint about some minor problems with the capitalization of language names. This patch should fix most of them. and removes some "language" prefix and suffixes which are not needed to make clear what people are selecting here. [1]: https://github.com/cvladan Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Release version 1.3.2Sheogorath2019-03-291-0/+10
| | | | | | | | Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Fix button background colorSheogorath2019-03-291-1/+1
| | | | | | | | | | | | | | | | | | | | When introducing night mode the rule for the background of the view switches seems to be generated from the view button. This patch should change the introduced rule to fix for all default buttons. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Update links to new repositoriesSheogorath2019-03-274-5/+5
|/ | | | | | | | | | | | After a long discussion, it turned out that CodiMD as community project and HackMD as a company, have fundamental different views on the project governance. Due to this, it came to point where the decision for a fork was made. After the fork and move towards an own organisation, this patch updates all links inside the project to the new repositories. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Release version 1.3.1Sheogorath2019-03-231-0/+25
| | | | Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Merge pull request #1158 from SISheogorath/feature/serbianLanguageChristoph (Sheogorath) Kern2019-03-161-0/+1
|\ | | | | Add serbian language
| * Add serbian languageSheogorath2019-03-041-0/+1
| | | | | | | | | | | | | | | | Thanks for the work of the translator Vladan we got a serbian translation added! Those few changes will add serbian language support for future CodiMD releases. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Merge pull request #1166 from SISheogorath/fix/exportEmojisChristoph (Sheogorath) Kern2019-03-131-1/+1
|\ \ | | | | | | Fix broken HTML export with emojis
| * | Fix broken HTML export with emojisSheogorath2019-03-091-1/+1
| |/ | | | | | | | | | | | | | | | | HTML export was broken due to missing alt-attribute for emojis. This patch adds the old alt-element style and restores the exportability this way. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Fix possible order changes for 'Powered by' in other languagesSheogorath2019-03-101-1/+1
| | | | | | | | | | | | | | | | Since not all languages use the same word oder and we run into potential issues, where the translation of powered by need to add something after the CodiMD link, this should give us the needed flexiblity. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Merge pull request #1076 from SISheogorath/fix/translationChristoph (Sheogorath) Kern2019-03-102-9/+9
|\ \ | |/ |/| Add some missing translations
| * Add some missing translationsSheogorath2018-11-232-9/+9
| | | | | | | | | | | | | | | | | | There are some places in our code that made it to be not translated. This patch fixes some small translation problems and adds some static strings in templates to translation. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Release version 1.3.0Sheogorath2019-03-041-0/+95
| | | | | | | | Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Fix possible MathJax XSS issue [Security Issue]Max Wu2019-03-033-0/+6
| | | | | | | | | | | | see more at: http://docs.mathjax.org/en/latest/safe-mode.html Signed-off-by: Max Wu <jackymaxj@gmail.com>
* | Fix CI errors for unused variablesSheogorath2019-02-211-3/+2
| | | | | | | | Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Remove broken speakerdeck embeddingSheogorath2019-02-212-31/+7
| | | | | | | | | | | | | | | | | | | | | | | | The current speakerdeck implementation is broken. An alternative implementation using oembed doesn't work due to CORS, which could be solved by proxying the speakerdeck API, but we decided to not do this. This patch provides the link to the speakerdeck presentation instead, and this way doesn't break existing notes. This is right now the best solution we could come up with. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Update bootstrap from 3.3.7 to 3.4.0Sheogorath2019-01-116-8/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | Seems like finally there is a new bootstrap version for old version 3. This patch implements this new version with CodiMD and this way fixes some possible security issues in the frontend code. See: https://snyk.io/vuln/SNYK-JS-BOOTSTRAP-72889 https://snyk.io/vuln/SNYK-JS-BOOTSTRAP-72890 Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Fix to escape html comment tag [Security Issue]Max Wu2018-12-281-1/+1
| | | | | | | | Signed-off-by: Max Wu <jackymaxj@gmail.com>
* | Fix to sanitize disqus shortnames to remove slashes [Security Issue]Max Wu2018-12-281-1/+1
| | | | | | Signed-off-by: Max Wu <jackymaxj@gmail.com>
* | Update socket.ioSheogorath2018-11-281-1/+1
| | | | | | | | | | | | | | | | | | | | Our socket.io version is 2.0.4 while the current socket.io version is 2.1.1. This patch updates socket.io to version 2.1.1 and takes care of the CDN client version. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Update from to-markdown to turndownSheogorath2018-11-211-2/+7
|/ | | | | | | | | | | | | | We got a security alert for a regular expression DoS attack on our used library `to-markdown`. After checking `to-markdown` to be maintained or not, it turned out they renamed the library to `turndown`. So upgrading to `turndown` should fix this vulnerbility. References: https://www.npmjs.com/package/to-markdown https://github.com/domchristie/turndown/wiki/Migrating-from-to-markdown-to-Turndown Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Update reveal.js to version 3.7.0Sheogorath2018-11-191-3/+3
| | | | | | | | | | | | | | | There is a new reveal.js version out. As we try to keep up with upstream, time to integreate it. This patch updates reveal.js in for CDN-using instances as well as the ones using the libraries. Checked that speaker view in slide mode still works, so no CSP change needed. https://github.com/hakimel/reveal.js/releases/tag/3.7.0 https://github.com/hackmdio/codimd/blob/2d241b93002a3a23f81ffe8fab82f2c6c98feca4/lib/csp.js#L72-L74 Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Merge pull request #1043 from SISheogorath/fix/tocEmptyHeadChristoph (Sheogorath) Kern2018-11-193-6/+9
|\ | | | | Fix ToC breaking documents with empty h* elements
| * Fix wrong anchorsSheogorath2018-11-192-2/+5
| | | | | | | | | | | | | | | | | | | | While experimenting with the ToC changes, it became obvious that anchors for those unnamed headers don't work. This patch fixes those links by running the autolinkify twice and make sure linkify only adds links to non-empty ids. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
| * Fix ToC breaking documents with empty h* elementsSheogorath2018-11-191-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | Right now, the ToC has an undefined variable i that was an index in the original ToC code. Since the major rewrite in 4fe062085324c50f2cfa062258559cf31858ef5f it's a recursive function without this index. The variable `i` was wrongly copied into its current place from the old code. This patch replaces the variable `i` with the index of the header element. Fix the undefined variable problem. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Merge pull request #1060 from SISheogorath/fix/indexLinksChristoph (Sheogorath) Kern2018-11-181-3/+3
|\ \ | | | | | | Fixing links on index page
| * | Fixing links on index pageSheogorath2018-11-181-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Seems like ids in Firefox are case sensitive. So linking in the current way fails. This patch fixes the links by using the exact matching version of the titles on the features page. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | | switching to eslint for code checkingClaudius Coenen2018-11-145-6/+37
|/ / | | | | | | | | | | | | most rules degraded to WARN, so we don't go insane. This will change over time. The aim is to conform to a common style Signed-off-by: Claudius Coenen <opensource@amenthes.de>
* | Add documentation for slide view mode to features pageSheogorath2018-11-141-1/+3
| | | | | | | | | | | | | | | | | | Since it's a very useful feature, we should mention it in multiple locations. So we mention it in the slide mode section of the features page. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Some minor improvements to the yaml-metadata docsSheogorath2018-11-141-15/+15
| | | | | | | | | | | | Switching form XAML to YAML syntax highlighting and fixing some grammar. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Add documentation for type fieldSheogorath2018-11-141-0/+11
| | | | | | | | | | | | | | The yaml-metadata documentation should mention the type field. This is also open for future extension. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Activate slide editing mode for exampleSheogorath2018-11-141-0/+1
| | | | | | | | | | | | | | | | | | We have this awesome editing mode for slide shows. We just don't enable it or tell anyone that it exists. Maybe we should do this. This patch sets the type for the slide example. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Merge pull request #1028 from SISheogorath/docs/editorModesChristoph (Sheogorath) Kern2018-11-121-2/+16
|\ \ | | | | | | Add documentation about editor modes in features page
| * | Add documentation about editor modes in features pageSheogorath2018-10-281-2/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Codemirror provides various modes via keymapping. These are already available by a menu in the interface. But they aren't mentioned anywhere. This patch provides some documentation about the editor modes and their implications. Since they are a feature, the documentation is done on the features page. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | | Merge pull request #1046 from SISheogorath/feature/optimizeXSSChristoph (Sheogorath) Kern2018-11-112-4/+7
|\ \ \ | | | | | | | | Remove the xss library from webpack
| * | | Remove the xss library from webpackSheogorath2018-11-102-4/+7
| | |/ | |/| | | | | | | | | | | | | | | | | | | We can load the xss functions directly from the library instead of loading them through the expose loader of webpack, this should simplify the setup and maybe even improve speed a bit. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* / | Add full version stringSheogorath2018-11-111-1/+1
|/ / | | | | | | | | | | | | | | | | | | | | | | Currently we only provide the version from `package.json`. This means that during updates of instances, e.g. the demo instance, which runs latest master instead of a stable release, changes are not reflected to the webclient. This patch adds a fullversion string that contains the current commit and this way makes that clients are notified about changes. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* | Fix menu for github and dropboxCédric Couralet2018-11-071-4/+4
| | | | | | | | Signed-off-by: Cédric Couralet <cedric.couralet@gmail.com>
* | Fix menu when gitlab is enabledCédric Couralet2018-11-071-6/+6
| | | | | | | | Signed-off-by: Cédric Couralet <cedric.couralet@gmail.com>
* | Merge pull request #1034 from SISheogorath/fix/emojiPluginChristoph (Sheogorath) Kern2018-11-061-7/+6
|\ \ | | | | | | Again: Replace emoji-plugin regex
| * | Again: Replace emoji-plugin regexSheogorath2018-10-311-7/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The Regex introduced in the last commit[1], was already working quite good. But still resulted in false positives for all URL that contained a second `:`. To fix this once and for all, we craft a simple, but long regex based on all emoji names and use this to match them. We could probably optimize it, but that should also be something the regex engine itself can and should do. [1]: 7e45533c75a3697c916e52e5f4ddff42a38bd3d5 (in this source tree) Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>