rixty/SillyTavern
1
0
Fork 0
mirror of https://github.com/SillyTavern/SillyTavern.git synced 2025-06-05 21:59:27 +02:00
Code Issues Packages Projects Releases Wiki Activity

Sanitize entered URLs

Browse Source
This commit is contained in:
Cohee
2024-07-10 21:44:09 +03:00
parent 75382b77ea
commit 21de199b0f
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
public/scripts/extensions/assets/index.js
View File

@ -420,7 +420,7 @@ jQuery(async () => {
const connectButton = windowHtml.find('#assets-connect-button'); const connectButton = windowHtml.find('#assets-connect-button');
connectButton.on('click', async function () { connectButton.on('click', async function () {
const url = String(assetsJsonUrl.val()); const url = DOMPurify.sanitize(String(assetsJsonUrl.val()));
const rememberKey = `Assets_SkipConfirm_${getStringHash(url)}`; const rememberKey = `Assets_SkipConfirm_${getStringHash(url)}`;
const skipConfirm = localStorage.getItem(rememberKey) === 'true'; const skipConfirm = localStorage.getItem(rememberKey) === 'true';