Skip to content

Sanitise base64 encoded SVGs in Markdown rendering

Warren Gifford requested to merge vincent/xss-data-sanitize into main

Created by: evict

Added code to sanitise base64 encoded SVGs to prevent XSS. The SVGs are used in multiple places like code-insights, notebooks and extensions.

Test plan

  • test with code insights SVGs

App preview:

Check out the client app preview documentation to learn more.

Merge request reports