smokephil/paperless-ngx
1
0
Fork 0
mirror of https://github.com/paperless-ngx/paperless-ngx.git synced 2026-01-25 06:37:15 +01:00
Code Issues Projects Releases Packages Wiki Activity
10860 commits 35 branches 208 tags 257 MiB
Commit graph

6 commits

Author SHA1 Message Date
shamoon
078cba4bd1
Fix: allow safe <style> tags in SVG uploads (#11593) 2025-12-12 22:01:56 +00:00
shamoon
43e29598b3
Add more allowed SVG attributes to validator 2025-12-12 13:18:38 -08:00
Trenton H
d9a596d67a
Fix: Expanded SVG validation whitelist and additional checks (#11590) 2025-12-12 20:04:04 +00:00
shamoon
a9c73e2846
Update validators.py 2025-12-12 09:27:19 -08:00
shamoon
3f81b432ec
Fix: normalize SVG tag and attribute names, add version (#11586) 2025-12-11 19:17:55 -08:00
shamoon
b1c406680f
Merge commit from fork 
* Security: prevent XSS with storage path template rendering

* Security: prevent XSS svg uploads

* Security: force attachment disposition for logo

* Add suggestions from code review

* Improve SVG validation with allowlist for tags and attributes
 2025-08-16 07:34:00 -07:00