Contrib.social

Investigate allowing "content" as allowed tag

Open on Drupal.org β†’
Created on 5 April 2023, over 1 year ago

Problem/Motivation

Follow up from πŸ› XSS attribute filtering is inconsistent and strips valid attributes Needs work need to look into a way to allow 'content' as an allowed attribute

From @larowlan

I think it's safe when used in an rdf context, but not in a meta element

Adding it to the list from the original ticket broke tests in StandardTest.php

Steps to reproduce

TBD

Proposed resolution

TBD

Remaining tasks

TBD

User interface changes

TBD

API changes

TBD

Data model changes

TBD

Release notes snippet

TBD

✨ Feature request
Status

Active

Version

10.1 ✨

Component
BaseΒ  β†’

Last updated about 17 hours ago

Created by

πŸ‡ΊπŸ‡ΈUnited States smustgrave

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

contrib.social Blog FAQ Discussions
Production build 0.71.5 2024