Hello.
The browser used by the Markdown plugin executes scripts provided in Markdown files. This could have security/privacy implications.
Is it possible to tell the browser to not execute scripts?
To reproduce, save the following snippet to file.md
, and open it with Geany with the Markdown preview active:
<script>
alert('Hello, world!');
</script>
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.