toyplot
toyplot copied to clipboard
sandialabs
Interactive plotting for Python.
If a mark doesn't export data (i.e. it's an annotation), it shouldn't prevent selection and export of a mark below it in Z order.
It's hard to hit the line. We should probably be highlighting / selecting whatever is closest to the cursor.
- Create a number line - Set the domain to "0" and "8". - The default Extended tick locator generates four ticks at 0, 2.5, 5, and 7.5, which is...
Something about the reveal.js slides makes the context menu open off to the lower right of the pointer (sometimes off screen), and there doesn't seem to be any way to...
This will make it easier to see the selected point that corresponds with axis coordinates. Cartesian axes can use a crosshair, Numberline axes can use a vertical line, and will...
Actually, more like polygons or squishy blobs that are the convex hull of a collection of points. This would facilitate analyzing clusters, both in graphs and scatterplots. - [ ]...
This PR addresses multiple security issues: - **Issue #218**: XSS vulnerability in inline scripts - Fixed by escaping tags in JavaScript code. - **Issue #219**: Unsafe hyperlink validation - Fixed...
## Summary - escape literal sequences in generated inline JavaScript to block injection - add a unittest-based test suite with coverage for the escaping behavior - hook the new tests...
# Issue 3: Ghostscript Invocation Inconsistencies and Reduced Sandbox Severity: Medium ## Summary Toyplot invokes Ghostscript to rasterize PDF -> PNG. There are two issues: 1. PATH-based command discovery without...
# Issue 2: Unvalidated Hyperlink Schemes Allow javascript: Injection Severity: High ## Summary User-supplied hyperlink values (canvas-level, axes, table cells, marks, markers) are only type-checked in `toyplot/require.py::hyperlink()` but not validated...