development/vscode
development/vscode
1
0
Fork 0
mirror of https://github.com/Microsoft/vscode synced 2024-09-19 10:40:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

mark 'text/x-javascript' as always secure because we only render it

Browse source
This commit is contained in:
Johannes Rieken 2021-05-12 13:40:52 +02:00
parent d8e2bee4b4
commit b5702a305a
No known key found for this signature in database
GPG key ID: 96634B5AF12F8798
1 changed files with 1 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
src/vs/workbench/contrib/notebook/common/notebookCommon.ts
View file

@ -549,7 +549,7 @@ const _mimeTypeInfo = new Map<string, MimeTypeInfo>([
['text/html', { supportedByCore: true }],
['image/svg+xml', { supportedByCore: true }],
['image/jpeg', { supportedByCore: true }],
['text/x-javascript', { supportedByCore: true }],
['text/x-javascript', { alwaysSecure: true, supportedByCore: true }], // secure because rendered as text, not executed
['application/x.notebook.error-traceback', { alwaysSecure: true, supportedByCore: true }],
['application/x.notebook.stream', { alwaysSecure: true, supportedByCore: true, mergeable: true }],
['application/x.notebook.stdout', { alwaysSecure: true, supportedByCore: true, mergeable: true }],
@ -888,4 +888,3 @@ export class NotebookWorkingCopyTypeIdentifier {
return undefined;
}
}