rehype
-
|
Hello, does rehype-sanitize employ measures against unicode bidi attacks? https://trojansource.codes/ Also asked in react-markdown: remarkjs/remark#904 |
Beta Was this translation helpful? Give feedback.
Answered by
wooorm
Nov 18, 2021
Replies: 1 comment
-
|
Unicode bidi attacks do not mean that bidi is dangerous in an of itself. There‘s nothing an HTML sanitizer can do about it. unicode bidi is fine and good. The problem is in code editors. Stuff like VSCode and GitHub. Not here. |
Beta Was this translation helpful? Give feedback.
0 replies
Answer selected by
cobbdb
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Unicode bidi attacks do not mean that bidi is dangerous in an of itself. There‘s nothing an HTML sanitizer can do about it. unicode bidi is fine and good. The problem is in code editors. Stuff like VSCode and GitHub. Not here.