aiden
/
mastodon
mirror of https://github.com/mastodon/mastodon
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Change HTML sanitization to remove unusable and unused `embed` tag (#34021)

Browse Source
stable-4.1
Claire 1 day ago
parent 4320a7ede1
commit cee6fb3061
1 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File

6
lib/sanitize_ext/sanitize_config.rb
Unescape Escape View File

@ -94,19 +94,17 @@ class Sanitize
]
)
MASTODON_OEMBED ||= freeze_config(
elements: %w(audio embed iframe source video),
MASTODON_OEMBED = freeze_config(
elements: %w(audio iframe source video),
attributes: {
'audio' => %w(controls),
'embed' => %w(height src type width),
'iframe' => %w(allowfullscreen frameborder height scrolling src width),
'source' => %w(src type),
'video' => %w(controls height loop width),
},
protocols: {
'embed' => { 'src' => HTTP_PROTOCOLS },
'iframe' => { 'src' => HTTP_PROTOCOLS },
'source' => { 'src' => HTTP_PROTOCOLS },
},

Write Preview
Loading…
Cancel
Save