For example, to prevent XSS, I would use this:
$Parsedown->setSafeMode(true);
Source: https://github.com/erusev/parsedown#security
But using the markdown_to_html filter, I don't see how would I use it.
Yes, I can produce a XSS by inserting a script into the markdown code being converted to html, and I'm not using the raw filter
For example, to prevent XSS, I would use this:
Source: https://github.com/erusev/parsedown#security
But using the
markdown_to_htmlfilter, I don't see how would I use it.Yes, I can produce a XSS by inserting a script into the markdown code being converted to html, and I'm not using the
rawfilter