Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

ultramarked

Package Overview
Dependencies
Maintainers
1
Versions
31
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

ultramarked - npm Package Compare versions

Comparing version 0.5.1 to 0.5.3

src/index.js
src/sanitizer-pagedown.js
src/sanitizer.js

8

package.json

@@ -10,3 +10,3 @@ {

},
"version": "0.5.1",
"version": "0.5.3",
"repository": {

@@ -21,3 +21,4 @@ "type": "git",

"marked": "~0.2.9",
"highlight.js": "~7.3.0"
"highlight.js": "~7.3.0",
"ent": "0.0.5"
},

@@ -27,3 +28,4 @@ "engines": {

"npm": "1.2.x"
}
},
"main": "./src/index.js"
}

11

README.md

@@ -25,2 +25,11 @@ # ultramarked

Syntax highlighting powered by [highlight.js](https://github.com/isagalaev/highlight.js), no extra magic.
Syntax highlighting powered by [highlight.js](https://github.com/isagalaev/highlight.js), no extra magic.
### options.ultrasanitize
As of right now, Marked encodes **all** HTML input when `sanitize = true`. Set this option to true to use the [AngularJS Sanitizer](https://github.com/angular/angular.js/blob/master/lib/htmlparser/htmlparser.js) sanitizer, tweaked to disallow script and style tags.
### options.ultrasanitize_pagedown
Angular's sanitizer option might be too lenient for you. If that's the case, you can use PageDown's white-list instead, which is much more narrow, and doesn't allow setting class attributes, for example.
index.js
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc