marcel/excalidraw
1
0
Fork 0
mirror of https://github.com/excalidraw/excalidraw.git synced 2025-09-10 02:49:57 +02:00
Code Issues Packages Projects Releases Wiki Activity

fix: Gist embed allowing unsafe html (#7883)

Browse Source
This commit is contained in:
David Luzar
2024-04-12 12:57:43 +02:00
committed by David Luzar
parent 81046ccd6b
commit 2879c9d852
2 changed files with 31 additions and 46 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
src/components/App.tsx
View File

@@ -946,7 +946,11 @@ class App extends React.Component<AppProps, AppState> {
title="Excalidraw Embedded Content"
allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture"
allowFullScreen={true}
sandbox="allow-same-origin allow-scripts allow-forms allow-popups allow-popups-to-escape-sandbox allow-presentation allow-downloads"
sandbox={`${
embedLink?.sandbox?.allowSameOrigin
? "allow-same-origin"
: ""
} allow-scripts allow-forms allow-popups allow-popups-to-escape-sandbox allow-presentation allow-downloads`}
/>
)}
</div>