chore: add forcedSanitizeWhiteList

St1ggy · St1ggy · commit 09f1cbfb7809 · 2024-11-06T15:51:40.000+03:00
diff --git a/src/transform/constants.ts b/src/transform/constants.ts
@@ -0,0 +1,3 @@
+import {CssWhiteList} from './typings';
+
+export const forcedSanitizeWhiteList: CssWhiteList = {};
diff --git a/src/transform/plugins/imsize/plugin.ts b/src/transform/plugins/imsize/plugin.ts
@@ -2,6 +2,8 @@ import type MarkdownIt from 'markdown-it';
 import type ParserInline from 'markdown-it/lib/parser_inline';
 import type Token from 'markdown-it/lib/token';
 
+import {forcedSanitizeWhiteList} from '../../constants';
+
 import {ImsizeAttr} from './const';
 import {parseImageSize} from './helpers';
 
@@ -225,6 +227,7 @@ export const imageWithSize = (md: MarkdownIt, opts?: ImsizeOptions): ParserInlin
                 if (height !== '') {
                     if (width !== '' && !heightWithPercent && !widthWithPercent) {
                         style += `aspect-ratio: ${width} / ${height};height: auto;`;
+                        forcedSanitizeWhiteList['aspect-ratio'] = true;
                     } else {
                         const heightString = heightWithPercent ? height : `${height}px`;
                         style += `height: ${heightString};`;
diff --git a/src/transform/sanitize.ts b/src/transform/sanitize.ts
@@ -4,6 +4,9 @@ import cssfilter from 'cssfilter';
 import * as cheerio from 'cheerio';
 import css from 'css';
 
+import {forcedSanitizeWhiteList} from './constants';
+import {CssWhiteList} from './typings';
+
 const htmlTags = [
     'a',
     'abbr',
@@ -492,8 +495,6 @@ const allowedTags = Array.from(
 );
 const allowedAttributes = Array.from(new Set([...htmlAttrs, ...svgAttrs, ...yfmHtmlAttrs]));
 
-export type CssWhiteList = {[property: string]: boolean};
-
 export interface SanitizeOptions extends sanitizeHtml.IOptions {
     cssWhiteList?: CssWhiteList;
     disableStyleSanitizer?: boolean;
@@ -584,7 +585,7 @@ function sanitizeStyleAttrs(dom: cheerio.CheerioAPI, cssWhiteList: CssWhiteList)
 }
 
 function sanitizeStyles(html: string, options: SanitizeOptions) {
-    const cssWhiteList = options.cssWhiteList || {};
+    const cssWhiteList = {...forcedSanitizeWhiteList, ...(options.cssWhiteList || {})};
 
     const $ = cheerio.load(html);
 
diff --git a/src/transform/typings.ts b/src/transform/typings.ts
@@ -98,3 +98,5 @@ export type MarkdownItPluginCb<T extends {} = {}> = {
 export type MarkdownItPreprocessorCb<T extends unknown = {}> = {
     (input: string, opts: T & Partial<MarkdownItPluginOpts>, md?: MarkdownIt): string;
 };
+
+export type CssWhiteList = {[property: string]: boolean};

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+import {CssWhiteList} from './typings';`
	`2`	`+`
	`3`	`+export const forcedSanitizeWhiteList: CssWhiteList = {};`