leapchat icon indicating copy to clipboard operation
leapchat copied to clipboard

Published 20 hours ago verified publisher icon cryptag

Ensure user input sanitization

Open elimisteve opened this issue 6 years ago • 0 comments

Is user input sufficiently sanitized here? I've tried making it implausible to satisfy this regex while being malicious, but... is it possible? I couldn't find a way to avoid the dangerouslySetInnerHTML and still have the images show up: https://github.com/cryptag/leapchat/blob/develop/src/components/chat/Message.js#L15

elimisteve avatar Aug 07 '18 14:08 elimisteve