updating DOMPurify library, simplifying its use, ensuring HTML entities get escaped before formatting paste - regression introduced in #258, reported in #269

2025-10-04 10:09:18 +02:00 · 2018-01-01 10:25:07 +01:00 · 2018-01-01 10:25:07 +01:00 · bb54d46c7e
commit bb54d46c7e
parent 6093f0cc9c
6 changed files with 16 additions and 16 deletions
--- a/js/test.js
+++ b/js/test.js
@ -42,7 +42,7 @@ require('./prettify');
 global.prettyPrint = window.PR.prettyPrint;
 global.prettyPrintOne = window.PR.prettyPrintOne;
 global.showdown = require('./showdown-1.6.1');
-global.DOMPurify = require('./purify.min');
+global.DOMPurify = require('./purify-1.0.3');
 require('./bootstrap-3.3.7');
 require('./privatebin');

@ -1422,7 +1422,7 @@ describe('PasteViewer', function () {
                results.push(
                    $('#placeholder').hasClass('hidden') &&
                    !$.PrivateBin.PasteViewer.isPrettyPrinted() &&
-                    $.PrivateBin.PasteViewer.getText() == text
+                    $.PrivateBin.PasteViewer.getText() == $('<div />').text(text).html()
                );
                if (format == 'markdown') {
                    results.push(