What is @ckeditor/ckeditor5-list?
@ckeditor/ckeditor5-list is a plugin for CKEditor 5 that provides advanced list editing capabilities. It allows users to create and manage ordered and unordered lists, as well as nested lists, with ease.
What are @ckeditor/ckeditor5-list's main functionalities?
Ordered List
This feature allows users to create ordered (numbered) lists in the editor. The code sample demonstrates how to initialize CKEditor with the List plugin and add the 'numberedList' button to the toolbar.
ClassicEditor.create(document.querySelector('#editor'), { plugins: [ List ], toolbar: [ 'numberedList' ] });
Unordered List
This feature enables users to create unordered (bulleted) lists. The code sample shows how to set up CKEditor with the List plugin and include the 'bulletedList' button in the toolbar.
ClassicEditor.create(document.querySelector('#editor'), { plugins: [ List ], toolbar: [ 'bulletedList' ] });
Nested Lists
This feature allows users to create nested lists, both ordered and unordered. The code sample demonstrates initializing CKEditor with the List plugin and adding both 'numberedList' and 'bulletedList' buttons to the toolbar.
ClassicEditor.create(document.querySelector('#editor'), { plugins: [ List ], toolbar: [ 'numberedList', 'bulletedList' ] });
Other packages similar to @ckeditor/ckeditor5-list
quill
Quill is a modern WYSIWYG editor built for compatibility and extensibility. It provides basic list functionalities similar to @ckeditor/ckeditor5-list, but it may require additional configuration or plugins for more advanced list features.
tinymce
TinyMCE is a popular rich text editor that offers comprehensive list editing capabilities, including ordered, unordered, and nested lists. It is comparable to @ckeditor/ckeditor5-list in terms of functionality but has a different API and configuration approach.
draft-js
Draft.js is a framework for building rich text editors in React. It supports list functionalities through its built-in features and additional plugins. While it provides similar capabilities to @ckeditor/ckeditor5-list, it requires more setup and customization.
43.1.1 (September 25, 2024)
We are happy to announce the release of CKEditor 5 v43.1.1.
During a recent internal audit, we identified a Cross-Site Scripting (XSS) vulnerability in the CKEditor 5 clipboard package (CVE-2024-45613
). This vulnerability could be triggered by a specific user action, leading to unauthorized JavaScript code execution, if the attacker managed to insert malicious content into the editor, which might happen with a very specific editor configuration.
This vulnerability affects only installations where the editor configuration meets the following criteria:
- The Block Toolbar plugin is enabled.
- One of the following plugins is also enabled:
You can read more details in the relevant security advisory and contact us if you have more questions.
Taking the occasion, we decided to introduce additional hardening to some parts of our codebase that introduce theoretical and unexploitable issues. Our security team confirmed that none of these issues were exploitable in a real scenario, however, we decided to fix them, in order to increase the overall security posture of our software.
Released packages
Check out the Versioning policy guide for more information.
<details>
<summary>Released packages (summary)</summary>
Other releases:
</details>