🛠 Replace inline HTML sanitization with a custom Markdown component for consistency.

🛡 Add `DisallowedRawHtmlExtension` to Markdown config for enhanced security.
2026-04-06 09:58:42 +00:00 · 2026-04-05 19:00:30 +01:00
parent 8e7672691d
commit 16134d6be6
3 changed files with 3 additions and 2 deletions
--- a/resources/views/livewire/association/project-support/show.blade.php
+++ b/resources/views/livewire/association/project-support/show.blade.php
@@ -138,7 +138,7 @@ new class extends Component {
                        {{ $projectProposal->name }}
                    </h1>
                    <x-markdown>
-                        {!! \Stevebauman\Purify\Facades\Purify::clean($projectProposal->description) !!}
+                        {!! $projectProposal->description !!}
                    </x-markdown>
                </header>

--- a/resources/views/vendor/markdown/markdown.blade.php
+++ b/resources/views/vendor/markdown/markdown.blade.php
@@ -0,0 +1 @@
+<div {{ $attributes }}>{!! \Stevebauman\Purify\Facades\Purify::clean($toHtml($slot)) !!}</div>
				`@@ -0,0 +1 @@`
				`<div {{ $attributes }}>{!! \Stevebauman\Purify\Facades\Purify::clean($toHtml($slot)) !!}</div>`