MurasameNoa/chatgpt-plugin
1
0
Fork 0
mirror of https://github.com/ikechan8370/chatgpt-plugin.git synced 2025-12-16 21:37:11 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix: vulnerability problems

Browse source
This commit is contained in:
ikechan8370 2023-02-19 01:19:08 +08:00
parent b5afe1f4fb
commit 6da40e3843
7 changed files with 42 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

7
resources/content/Bing/index.html
View file

@ -102,6 +102,7 @@
<script src="{{pluResPath}}content/Bing/static/js/marked.min.js"></script>
<script src="{{pluResPath}}content/Bing/static/js/tex-mml-chtml.js"></script>
<script src="{{pluResPath}}content/Bing/static/js/main.js"></script>
<script src="{{pluResPath}}content/Bing/static/js/purify.min.js"></script>
<script>
marked.setOptions({
@ -117,9 +118,11 @@
return hljs.highlightAuto(code,[lang]).value;
}
});
const markdown = $(".markdown").text();
const html = marked.parse(markdown);
const sanitizedHtml = DOMPurify.sanitize(html);
let text = marked.parse($(".markdown").text());
$(".markdown").html(text);
$(".markdown").html(sanitizedHtml);
jQuery('#qrcode').qrcode({width: 128,height: 128,text: "http://content.alcedogroup.com/{{cache}}"});
</script>
</body>

3
resources/content/Bing/static/js/purify.min.js vendored Normal file
View file

File diff suppressed because one or more lines are too long

9
resources/content/ChatGPT/index.html
View file

@ -21,7 +21,7 @@
<a href="#" class="site-logo">
<img src="{{pluResPath}}content/ChatGPT/static/picture/openai.png" alt="LOGO">
</a>
</div>
</div>
</div>
@ -88,6 +88,7 @@
<script src="{{pluResPath}}content/ChatGPT/static/js/marked.min.js"></script>
<script src="{{pluResPath}}content/Bing/static/js/tex-mml-chtml.js"></script>
<script src="{{pluResPath}}content/ChatGPT/static/js/main.js"></script>
<script src="{{pluResPath}}content/ChatGPT/static/js/purify.min.js"></script>
<script>
marked.setOptions({
@ -103,9 +104,11 @@
return hljs.highlightAuto(code,[lang]).value;
}
});
const markdown = $(".markdown").text();
const html = marked.parse(markdown);
const sanitizedHtml = DOMPurify.sanitize(html);
let text = marked.parse($(".markdown").text());
$(".markdown").html(text);
$(".markdown").html(sanitizedHtml);
jQuery('#qrcode').qrcode({width: 128,height: 128,text: "http://content.alcedogroup.com/{{cache}}"});
</script>
</body>

3
resources/content/ChatGPT/static/js/purify.min.js vendored Normal file
View file

File diff suppressed because one or more lines are too long