[Github-comments] [geany/geany-plugins] [markdown] Possible security/privacy implications? (#624)
Diego MartÃnez
notifications at xxxxx
Thu Oct 12 02:01:13 UTC 2017
Hello.
The browser used by the Markdown plugin executes scripts provided in Markdown files. This could have security/privacy implications.
Is it possible to tell the browser to not execute scripts?
To reproduce, save the following snippet to `file.md`, and open it with Geany with the Markdown preview active:
```
<script>
alert('Hello, world!');
</script>
```
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/geany/geany-plugins/issues/624
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.geany.org/pipermail/github-comments/attachments/20171012/51487ccf/attachment-0001.html>
More information about the Github-comments
mailing list