encrypt/gancio
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

use dompurify instead of sanitize-html

Browse Source
This commit is contained in:
les
2020-02-10 00:40:23 +01:00
parent e72b2822b9
commit 1dfd75a193
5 changed files with 65 additions and 75 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
server/api/controller/event.js
View File

@@ -5,6 +5,8 @@ const config = require('config')
const fs = require('fs')
const { Op } = require('sequelize')
const _ = require('lodash')
const helpers = require('../../helpers')
const {
event: Event,
resource: Resource,
@@ -15,7 +17,6 @@ const {
} = require('../models')
const Sequelize = require('sequelize')
const exportController = require('./export')
const sanitizeHtml = require('sanitize-html')
const debug = require('debug')('controller:event')
@@ -301,7 +302,7 @@ const eventController = {
body.image_path = req.file.filename
}
body.description = sanitizeHtml(body.description)
body.description = helpers.sanitizeHTML(body.description)
await event.update(body)
let place