github/penpot
1
0
Fork 0
mirror of https://github.com/penpot/penpot.git synced 2026-05-15 21:13:58 +00:00
Code Issues Packages Projects Releases Wiki Activity
penpot/common
History
Andrey Antukh 67d9567971
🐛 Prevent CSS injection vulnerability in font family names 
Add a shared `schema:font-family` whitelist validator in
app.common.types.font that only allows letters, digits, spaces,
hyphens, underscores, and dots in font family names. Apply the schema
to create-font-variant and update-font RPC endpoints on the
backend, and add client-side validation in the dashboard fonts UI.
Include unit tests for the schema and integration tests for the RPC
handlers.

Signed-off-by: Andrey Antukh <niwi@niwi.nz>
2026-05-14 13:46:02 +02:00
..
dev
🔧 Add serializable ordered collections
2024-09-03 23:35:53 +02:00
scripts
Add improvements to AGENTS.md (#8586)
2026-03-11 15:24:40 +01:00
src/app/common
🐛 Prevent CSS injection vulnerability in font family names
2026-05-14 13:46:02 +02:00
target/classes/app/common
🐛 Fix incorrect arc to curve conversion in some cases
2023-12-28 10:30:56 +01:00
test
🐛 Prevent CSS injection vulnerability in font family names
2026-05-14 13:46:02 +02:00
AGENTS.md
📚 Add minor improvements to ai agents documentation
2026-03-24 18:00:39 +01:00
build.clj
⬆️ Change default java compilation target to jdk21
2023-12-12 00:12:38 +01:00
deps.edn
🔧 Add cache to github tests CI worflow. (#9621)
2026-05-14 10:54:22 +02:00
package.json
Add improvements to AGENTS.md (#8586)
2026-03-11 15:24:40 +01:00
pnpm-lock.yaml
Add improvements to AGENTS.md (#8586)
2026-03-11 15:24:40 +01:00
pnpm-workspace.yaml
🎉 Migrate to PNPM common module
2026-01-22 13:55:41 +01:00
shadow-cljs.edn
🐛 Fix nodejs incompatibility with common tests prepend script (#5730)
2025-01-30 14:32:43 +01:00
tests.edn
Add improvements to AGENTS.md (#8586)
2026-03-11 15:24:40 +01:00