Mercurial Hosting > sceditor
diff src/changes.txt @ 22:499f38b5eeff
remove DOMPurify
| author | Franklin Schmidt <fschmidt@gmail.com> |
|---|---|
| date | Mon, 08 Aug 2022 23:41:05 -0600 |
| parents | 8bd52902156a |
| children | db061869f28f |
line wrap: on
line diff
--- a/src/changes.txt Mon Aug 08 20:03:27 2022 -0600 +++ b/src/changes.txt Mon Aug 08 23:41:05 2022 -0600 @@ -1,6 +1,8 @@ changes, most recent at top +Remove DOMPurify. This was a huge amount of incomprehensible code that adds little value. XSS should basically be handled on the server side, and if one is using bbcode then it isn't an issue anyway. + Removed "this" from command functions and instead pass "editor" as first arg. Javascript's object-oriented features are a disgusting hack and should never be used. I will remove uses of this as I encounter them. Add optional "icon" to command spec.