Skip to content

Commit c40826c

Browse files
author
Hero
committed
fixed xss and more #400 
1 parent 7ed6d0e commit c40826c

File tree

4 files changed

+46
-68
lines changed

4 files changed

+46
-68
lines changed

dist/Valine.Pure.min.js

Lines changed: 5 additions & 5 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

dist/Valine.min.js

Lines changed: 5 additions & 5 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

docs/index.html

Lines changed: 34 additions & 57 deletions
Original file line numberDiff line numberDiff line change
@@ -1,82 +1,59 @@
1-
2-
3-
4-
51
<!DOCTYPE html>
62
<html lang="zh" class="no-js">
73
<head>
4+
<meta charset="utf-8">
5+
<meta name="viewport" content="width=device-width,initial-scale=1">
6+
<meta http-equiv="x-ua-compatible" content="ie=edge">
7+
<meta name="keywords" content="极简风评论系统,社会化评论系统,无后端评论系统,评论系统,comment system,valine comment system,simple &amp; fast,Minimalist style">
88

9-
<meta charset="utf-8">
10-
<meta name="viewport" content="width=device-width,initial-scale=1">
11-
<meta http-equiv="x-ua-compatible" content="ie=edge">
12-
<meta name="keywords" content="极简风评论系统,社会化评论系统,无后端评论系统,评论系统,comment system,valine comment system,simple &amp; fast,Minimalist style">
13-
14-
<meta name="description" content="A fast, simple & powerful comment system.">
15-
16-
17-
<link rel="canonical" href="https://valine.js.org/">
18-
19-
20-
<meta name="author" content="xCss">
21-
22-
23-
<meta name="lang:clipboard.copy" content="复制">
24-
25-
<meta name="lang:clipboard.copied" content="已复制">
26-
27-
<meta name="lang:search.language" content="jp">
28-
29-
<meta name="lang:search.pipeline.stopwords" content="True">
30-
31-
<meta name="lang:search.pipeline.trimmer" content="True">
32-
33-
<meta name="lang:search.result.none" content="没有找到符合条件的结果">
34-
35-
<meta name="lang:search.result.one" content="找到 1 个符合条件的结果">
36-
37-
<meta name="lang:search.result.other" content="# 个符合条件的结果">
38-
39-
<meta name="lang:search.tokenizer" content="[\uff0c\u3002]+">
40-
41-
<link rel="shortcut icon" href="./assets/images/favicon.ico">
42-
<meta name="generator" content="mkdocs-0.17.3, mkdocs-material-2.7.1">
9+
<meta name="description" content="A fast, simple & powerful comment system.">
4310

4411

45-
46-
<title>Valine - A fast, simple & powerful comment system.</title>
47-
12+
<link rel="canonical" href="https://valine.js.org/">
4813

4914

50-
<link rel="stylesheet" href="./assets/stylesheets/application.78aab2dc.css">
51-
52-
<link rel="stylesheet" href="./assets/stylesheets/application-palette.6079476c.css">
53-
15+
<meta name="author" content="xCss">
5416

5517

56-
<script src="./assets/javascripts/modernizr.1aa3b519.js"></script>
18+
<meta name="lang:clipboard.copy" content="复制">
19+
20+
<meta name="lang:clipboard.copied" content="已复制">
21+
22+
<meta name="lang:search.language" content="jp">
5723

24+
<meta name="lang:search.pipeline.stopwords" content="True">
5825

26+
<meta name="lang:search.pipeline.trimmer" content="True">
27+
28+
<meta name="lang:search.result.none" content="没有找到符合条件的结果">
29+
30+
<meta name="lang:search.result.one" content="找到 1 个符合条件的结果">
31+
32+
<meta name="lang:search.result.other" content="# 个符合条件的结果">
33+
34+
<meta name="lang:search.tokenizer" content="[\uff0c\u3002]+">
35+
36+
<link rel="shortcut icon" href="./assets/images/favicon.ico">
37+
<meta name="generator" content="mkdocs-0.17.3, mkdocs-material-2.7.1">
38+
<title>Valine - A fast, simple & powerful comment system.</title>
39+
40+
<link rel="stylesheet" href="./assets/stylesheets/application.78aab2dc.css">
41+
42+
<link rel="stylesheet" href="./assets/stylesheets/application-palette.6079476c.css">
43+
<script src="./assets/javascripts/modernizr.1aa3b519.js"></script>
5944
<link href="https://fonts-gstatic.proxy.ustclug.org" rel="preconnect" crossorigin>
6045

61-
<link rel="stylesheet" href="https://fonts.proxy.ustclug.org/css?family=Ubuntu:300,400,400i,700|Ubuntu+Mono">
62-
<style>body,input{font-family:"Ubuntu","Helvetica Neue",Helvetica,Arial,sans-serif}code,kbd,pre{font-family:"Ubuntu Mono","Courier New",Courier,monospace}</style>
46+
<link rel="stylesheet" href="https://fonts.proxy.ustclug.org/css?family=Ubuntu:300,400,400i,700|Ubuntu+Mono">
47+
<style>body,input{font-family:"Ubuntu","Helvetica Neue",Helvetica,Arial,sans-serif}code,kbd,pre{font-family:"Ubuntu Mono","Courier New",Courier,monospace}</style>
6348

6449
<link rel="stylesheet" href="https://fonts.proxy.ustclug.org/icon?family=Material+Icons">
6550

66-
67-
6851
</head>
69-
70-
7152

7253
<body dir="ltr" data-md-color-primary="white" data-md-color-accent="">
73-
7454
<svg class="md-svg">
7555
<defs>
76-
77-
78-
<svg xmlns="http://www.w3.org/2000/svg" width="416" height="448"
79-
viewBox="0 0 416 448" id="github">
56+
<svg xmlns="http://www.w3.org/2000/svg" width="416" height="448" viewBox="0 0 416 448" id="github">
8057
<path fill="currentColor" d="M160 304q0 10-3.125 20.5t-10.75 19-18.125
8158
8.5-18.125-8.5-10.75-19-3.125-20.5 3.125-20.5 10.75-19 18.125-8.5
8259
18.125 8.5 10.75 19 3.125 20.5zM320 304q0 10-3.125 20.5t-10.75

package.json

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "valine",
3-
"version": "1.4.18",
3+
"version": "1.5.0",
44
"description": "A simple comment system based on Leancloud.",
55
"main": "dist/Valine.min.js",
66
"author": "xCss <xioveliu@gmail.com> (https://github.com/xCss)",
@@ -49,6 +49,7 @@
4949
"balajs": "^1.0.7",
5050
"balalaika": "^1.0.1",
5151
"blueimp-md5": "^2.8.0",
52+
"dompurify": "^2.3.8",
5253
"element-closest": "^3.0.2",
5354
"hanabi": "^0.4.0",
5455
"insane": "^2.6.2",

0 commit comments

Comments
 (0)