Skip to content

v2.10.2
Compare
Choose a tag to compare
@ygj6 ygj6 released this 14 Dec 03:00
· 16 commits to master since this release
v2.10.2
d325c45

Major Changed

  1. To prevent XSS, attributes of all HTML tags are filtered by default. To use specific attributes (such as style), you can configure the xssOptions as whitelist required.
xssOptions:{
    whiteList: {
        span: ['style']
    }
}
  1. Added the html option. If HTML tags are not required in Markdown, you are advised to set the html option to false to avoid security vulnerabilities.

What's Changed

Full Changelog: v2.10.1...v2.10.2

Contributors

jiawulin001
Assets 2
Loading