status-im
/
codimd
mirror of https://github.com/status-im/codimd.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
2,358 Commits 23 Branches 35 Tags 26 MiB
Commit Graph

632 Commits

Author SHA1 Message Date
RyotaK f26a73213a Don't accept sandbox attribute 
Because sandbox is whitelist attribute, attacker will be able to create iframe that has more permission than default.

Signed-off-by: RyotaK <49341894+ry0tak@users.noreply.github.com>
 2019-08-21 19:14:46 +09:00
Max Wu e89f820542
Feature/support vega lite (#1251) 
Feature/support vega lite
 2019-08-06 23:03:37 +08:00
Max Wu 71ea581796 Merge branch 'develop' into feature/support-vega-lite 
# Conflicts:
#	package.json
#	public/views/slide.ejs
 2019-08-06 22:06:43 +08:00
Max Wu 79e6d3d724 fix(security): potential JSONP callback overwritten 
Signed-off-by: Max Wu <jackymaxj@gmail.com>
 2019-08-06 21:43:28 +08:00
BoHong Li ff124ab6bf
refactor: fix line after merged develop 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:59:03 +08:00
BoHong Li 4a9b6ceca9
refactor: fix lint on public/js/utils.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:38 +08:00
BoHong Li d3fc6f58e3
refactor: fix lint on public/js/slide.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:37 +08:00
BoHong Li 3505dcb1c8
refactor: fix lint on public/js/index.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:37 +08:00
BoHong Li 8394ff58e9
refactor: fix lint on public/js/history.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:36 +08:00
BoHong Li 8ca8484992
refactor: fix lint on public/js/extra.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:36 +08:00
BoHong Li be527765bd
refactor: fix lint on public/js/lib/syncscroll.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:36 +08:00
BoHong Li cc93ace031
refactor: fix lint on public/js/lib/appState.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:35 +08:00
BoHong Li 88601302c4
refactor: fix lint on public/js/lib/editor/utils.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:35 +08:00
BoHong Li 94703dc8b8
refactor: fix lint on public/js/lib/editor/index.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:33 +08:00
BoHong Li 9f35add97b
refactor: fix lint on public/js/lib/editor/config.js 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:32 +08:00
BoHong Li ab1a3b663e
chore: upgrade spin.js to 4.0.0 
Signed-off-by: BoHong Li <raccoon@hackmd.io>
 2019-08-04 23:56:24 +08:00
Max Wu 49c6672b95 feat: add support of vega-lite 
Signed-off-by: Max Wu <jackymaxj@gmail.com>
 2019-08-04 20:16:46 +08:00
Max Wu 0c4d0a05e0 feat: add plantuml to support charts textcomplete list 
Signed-off-by: Max Wu <jackymaxj@gmail.com>
 2019-08-03 21:23:28 +08:00
Yukai Huang 6f7de25079
Make details element syncscrollable 
Signed-off-by: Yukai Huang <yukaihuangtw@gmail.com>
 2019-08-03 19:20:44 +08:00
Yukai Huang 8d889a6736
Support "spoiler" container syntax 
Signed-off-by: Yukai Huang <yukaihuangtw@gmail.com>
 2019-08-03 14:43:16 +08:00
Chulki Lee 5ce981859e Render plantuml only in fence 
Signed-off-by: Chulki Lee <chulki.lee@gmail.com>
 2019-07-31 10:02:07 -07:00
Chulki Lee 1d7895c869 Add plantuml support 
Signed-off-by: Chulki Lee <chulki.lee@gmail.com>
 2019-07-31 10:02:07 -07:00
BoHong Li c628737411
Merge branch 'develop' into refactor-realtime 
Signed-off-by: BoHong Li <raccoon@hackmd.io>

# Conflicts:
#	README.md
#	package.json
 2019-07-30 18:20:09 +08:00
Max Wu dd267096c9 fix: use lodash escapeHTML 
Signed-off-by: Max Wu <jackymaxj@gmail.com>
 2019-07-28 20:04:41 +08:00
Max Wu a7082633aa Upgrade mermaid to 8.2.3 
to avoid XSS inside the svg tag

Signed-off-by: Max Wu <jackymaxj@gmail.com>
 2019-07-28 20:04:41 +08:00
Yukai Huang f3a3c14aca
Merge branch 'develop' into feature/slides-spotlight 2019-06-27 17:37:16 +08:00
Yukai Huang e315127d31
Merge branch 'master' into feature/slides-timer 2019-06-26 11:39:22 +08:00
Yukai Huang d5a5ebc4d0
Merge branch 'master' into feature/slides-spotlight 2019-06-26 11:39:19 +08:00
BoHong Li a6036cb70b
refactor: back to use js-standard 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-05-27 17:53:08 +08:00
Max Wu fbb18b6e0a Fix stored XSS in the graphviz error message rendering [Security Issue] 
Signed-off-by: Max Wu <jackymaxj@gmail.com>
 2019-04-14 12:12:02 -04:00
BoHong Li b0dee3ee14
refactor: fix lint warning on public/js/lib/common/login.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:45 +08:00
BoHong Li bf727b5878
refactor: fix lint warning on public/js/lib/editor/utils.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:25 +08:00
BoHong Li 45ba0c646d
refactor: fix lint warning on public/js/syncscroll.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:25 +08:00
BoHong Li e564c40b4d
refactor: fix lint warning on public/js/cover.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:25 +08:00
BoHong Li d387cac690
refactor: fix lint warning on public/js/extra.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:25 +08:00
BoHong Li 0498dc70e8
refactor: fix lint warning on public/js/history.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:24 +08:00
BoHong Li 573501389a
refactor: fix lint warning on public/js/index.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:24 +08:00
BoHong Li a40a8bfc02
refactor: fix lint warning on public/js/pretty.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:24 +08:00
BoHong Li 33fcfd416d
refactor: fix lint warning on public/js/render.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:23 +08:00
BoHong Li 73bc7ae8e6
refactor: fix lint warning on public/js/slide.js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:23 +08:00
BoHong Li 4ae1c0ab3e
refactor: replace lz-string with @hackmd/lz-string 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:22 +08:00
BoHong Li 67707d097f
fix: remove string.js for sucurity issue 
1. Upgrade Imgur to fix npm install
2. Upgrade less version for security
3. Change package name in package.json to fit npm package.json rule

Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:22 +08:00
BoHong Li 56d86ee25e
fix: lint error 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-12 18:00:21 +08:00
BoHong Li f915957a4f
refactor: replace js-url with wurl (original version of js-url) 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-11 19:35:12 +08:00
BoHong Li 628e679916
refactor: replace Idle.js to @hackmd/idle-js 
Signed-off-by: BoHong Li <a60814billy@gmail.com>
 2019-04-11 18:30:20 +08:00
PastLeo 9696e60248
add reveal.js-elapsed-time-bar 
Signed-off-by: PastLeo <chgu82837@gmail.com>
 2019-04-05 15:53:23 +08:00
PastLeo 5621d45bf9
add spotlight dep for slides mode 
Signed-off-by: PastLeo <chgu82837@gmail.com>
 2019-04-05 15:17:48 +08:00
Sheogorath 982775f6dc
Fix broken HTML export with emojis 
HTML export was broken due to missing alt-attribute for emojis.

This patch adds the old alt-element style and restores the exportability
this way.

Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
 2019-03-09 15:04:07 +01:00
Sheogorath 1f0fb12755
Fix CI errors for unused variables 
Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
 2019-02-21 01:36:39 +01:00
Sheogorath c5ca7b634a
Remove broken speakerdeck embedding 
The current speakerdeck implementation is broken. An alternative
implementation using oembed doesn't work due to CORS, which could be
solved by proxying the speakerdeck API, but we decided to not do this.

This patch provides the link to the speakerdeck presentation instead,
and this way doesn't break existing notes. This is right now the best
solution we could come up with.

Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
 2019-02-21 01:26:37 +01:00