diff options
author | Joey Hess <joey@kitenet.net> | 2008-03-21 11:19:00 -0400 |
---|---|---|
committer | Joey Hess <joey@kitenet.net> | 2008-03-21 11:19:00 -0400 |
commit | 7eebd3709b01bd35a88d1370bf3954c28f50bcb9 (patch) | |
tree | 38565eac713ab01c5457b41eeaff4a015663d3f7 /doc | |
parent | bf7360347ea3f7a24345004a6c2143d15d3d2e92 (diff) |
web commit by http://jblevins.org/: Request for comments about SVG and MathML whitelists
Diffstat (limited to 'doc')
-rw-r--r-- | doc/todo/svg.mdwn | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/doc/todo/svg.mdwn b/doc/todo/svg.mdwn index d713d48cd..69fba2a99 100644 --- a/doc/todo/svg.mdwn +++ b/doc/todo/svg.mdwn @@ -13,4 +13,20 @@ if anyone else is interested.</del> <ins datetime="2008-03-20T23:05-05:00">Actually, that patch wasn't quite right. I'll post a new one when it's working properly.</ins> --[[JasonBlevins]] +I'd like to hear what people think about the following: + +1. Including whitelists of elements and attributes for SVG and MathML in + htmlscrubber. See my [htmlscrubber.pm][] and the [diff][] + from the current trunk. + +2. Creating a whitelist of safe SVG (and maybe even HTML) style + attributes such as `fill`, `stroke-width`, etc. + + This is how the [sanitizer][] in html5lib works. It shouldn't be too + hard to translate the relevant parts to Perl. + +[htmlscrubber.pm]: http://xbeta.org/gitweb/?p=xbeta/ikiwiki.git;a=blob;f=IkiWiki/Plugin/htmlscrubber.pm;hb=db56b62ce99cdb7ffe41a8decaca34ade7964aa4 +[diff]: http://xbeta.org/gitweb/?p=xbeta/ikiwiki.git;a=blobdiff;f=IkiWiki/Plugin/htmlscrubber.pm;h=e4234e3b31f54fd5ca929fe7bece88d176dab03a;hp=3bdaccea119ec0e1b289a0da2f6d90e2219b8d66;hb=db56b62ce99cdb7ffe41a8decaca34ade7964aa4;hpb=be0b4f603f918444b906e42825908ddac78b7073 +[sanitizer]: http://code.google.com/p/html5lib/source/browse/trunk/ruby/lib/html5/sanitizer.rb + [[wishlist]] |