From d7a027e8b1a48d731912c0657d406cfc516ee355 Mon Sep 17 00:00:00 2001 From: KMY Date: Mon, 6 Mar 2023 11:43:21 +0900 Subject: [PATCH] Remove image support for xss --- app/lib/text_formatter.rb | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/app/lib/text_formatter.rb b/app/lib/text_formatter.rb index 91c0ac1273..39a0c060fd 100644 --- a/app/lib/text_formatter.rb +++ b/app/lib/text_formatter.rb @@ -202,6 +202,10 @@ class TextFormatter text.include?(':') ? nil : '' + text + '' end + def image(link, title, alt_text) + nil + end + private def process_program_code(code)