Hello.

The browser used by the Markdown plugin executes scripts provided in Markdown files. This could have security/privacy implications.

Is it possible to tell the browser to not execute scripts?

To reproduce, save the following snippet to file.md, and open it with Geany with the Markdown preview active:

<script>
alert('Hello, world!');
</script>


You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.