fix: potential XSS vulnerabilities (#7923)

* fix: potential XSS vulnerabilities * feat: support filter and render for readme.md * chore: set ReadMeAutoRender to true * fix attachFileName undefined --------- Co-authored-by: Andy Hsu <i@nn.ci>
2025-03-15 23:28:40 +08:00
parent 04f5525f20
commit c82e632ee1
5 changed files with 82 additions and 2 deletions
--- a/internal/conf/const.go
+++ b/internal/conf/const.go
@ -31,7 +31,8 @@ const (
 	AudioAutoplay            = "audio_autoplay"
 	VideoAutoplay            = "video_autoplay"
 	PreviewArchivesByDefault = "preview_archives_by_default"
-
+	ReadMeAutoRender         = "readme_autorender"
+	FilterReadMeScripts      = "filter_readme_scripts"
 	// global
 	HideFiles               = "hide_files"
 	CustomizeHead           = "customize_head"