IntenseWebs/mattermost
3
0
Fork 0
mirror of https://github.com/mattermost/mattermost.git synced 2025-02-25 18:55:24 -06:00
Code Issues Packages Projects Releases Wiki Activity

Rendered invalid URLs as plain text when parsing markdown (#3616)

Browse Source
This commit is contained in:
Harrison Healey
2016-07-19 08:28:29 -04:00
committed by Christopher Speller
parent 5937473c5f
commit 40c47dcf0b
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
webapp/utils/markdown.jsx
View File

@@ -139,10 +139,10 @@ class MattermostMarkdownRenderer extends marked.Renderer {
const unescaped = decodeURIComponent(unescape(href)).replace(/[^\w:]/g, '').toLowerCase();
if (unescaped.indexOf('javascript:') === 0 || unescaped.indexOf('vbscript:') === 0 || unescaped.indexOf('data:') === 0) { // eslint-disable-line no-script-url
return '';
return text;
}
} catch (e) {
return '';
return text;
}
if (!(/[a-z+.-]+:/i).test(outHref)) {