The '--sanitize-html' option now examines URIs in markdown links

and images, and in HTML href and src attributes. If the URI scheme is not on a whitelist of safe schemes, it is rejected. The main point is to prevent cross-site scripting attacks using 'javascript:' URIs. See http://www.mail-archive.com/markdown-discuss@six.pairlist.net/msg01186.html and http://ha.ckers.org/xss.html. Resolves Issue #62. git-svn-id: https://pandoc.googlecode.com/svn/trunk@1262 788f1e2b-df1e-0410-8736-df70ead52e1b
author: fiddlosopher <fiddlosopher@788f1e2b-df1e-0410-8736-df70ead52e1b> 2008-03-22 20:41:56 +0000
committer: fiddlosopher <fiddlosopher@788f1e2b-df1e-0410-8736-df70ead52e1b> 2008-03-22 20:41:56 +0000
commit: 8624ed9bd3c38c1907070a3b7de244fd487976c4 (patch)
tree: a1bfab4317a80976768c31d65b7b3abf873192a9 /README
parent: 4988441f3c44d8b80712aec8eb3359a3a584e669 (diff)
download: pandoc-8624ed9bd3c38c1907070a3b7de244fd487976c4.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/README b/README
index e54821ba3..75d482333 100644
--- a/README
+++ b/README
@@ -356,7 +356,8 @@ For further documentation, see the `pandoc(1)` man page.
 `--sanitize-html`
 :   sanitizes HTML (in markdown or HTML input) using a whitelist.
     Unsafe tags are replaced by HTML comments; unsafe attributes
-    are omitted.
+    are omitted. URIs in links and images are also checked against a
+    whitelist of URI schemes.
 
 `--dump-args`
 :   is intended to make it easier to create wrapper scripts that use
author	fiddlosopher <fiddlosopher@788f1e2b-df1e-0410-8736-df70ead52e1b>	2008-03-22 20:41:56 +0000
committer	fiddlosopher <fiddlosopher@788f1e2b-df1e-0410-8736-df70ead52e1b>	2008-03-22 20:41:56 +0000
commit	8624ed9bd3c38c1907070a3b7de244fd487976c4 (patch)
tree	a1bfab4317a80976768c31d65b7b3abf873192a9 /README
parent	4988441f3c44d8b80712aec8eb3359a3a584e669 (diff)
download	pandoc-8624ed9bd3c38c1907070a3b7de244fd487976c4.tar.gz