9ff17ae20e
This setting allows to escape HTML in markdown rendering or not. The goal behind it is to avoid XSS issue in shared instances. More info: * the setting is set to true by default * it is set to false for anyone who already have the plugin enabled (avoid breaking existing entries) * improve the HTML sanitization when the setting is set to false - but don't consider it XSS proof * mention the setting in the plugin README
24 lines
No EOL
1 KiB
HTML
24 lines
No EOL
1 KiB
HTML
<div class="markdown"><ul>
|
|
<li>test:
|
|
<ul>
|
|
<li><a href="http://link.tld">zero</a></li>
|
|
<li><a href="http://link.tld">two</a></li>
|
|
<li><a href="http://link.tld">three</a></li>
|
|
</ul></li>
|
|
</ul>
|
|
<ol>
|
|
<li><a href="http://link.tld">zero</a>
|
|
<ol>
|
|
<li><a href="http://link.tld">two</a></li>
|
|
<li><a href="http://link.tld">three</a></li>
|
|
<li><a href="http://link.tld">four</a></li>
|
|
<li>foo <a href="?addtag=foobar" title="Hashtag foobar">#foobar</a></li>
|
|
</ol></li>
|
|
</ol>
|
|
<p><a href="?addtag=foobar" title="Hashtag foobar">#foobar</a> foo <code>lol #foo</code> <a href="?addtag=bar" title="Hashtag bar">#bar</a></p>
|
|
<p>fsdfs <a href="http://link.tld">http://link.tld</a> <a href="?addtag=foobar" title="Hashtag foobar">#foobar</a> <code>http://link.tld</code></p>
|
|
<pre><code>http://link.tld #foobar
|
|
next #foo</code></pre>
|
|
<p>Block:</p>
|
|
<pre><code>lorem ipsum #foobar http://link.tld
|
|
#foobar http://link.tld</code></pre></div> |