kyy
f464ba2d31
Some checks failed
Node.js CI / build (push) Failing after 2s
Node.js CI / e2e-tests (+(a11y|security|bugs)/**/*cy.js) (push) Failing after 2s
Node.js CI / e2e-tests (features/**/!(o|d|m)*.cy.js) (push) Failing after 2s
Node.js CI / e2e-tests (features/**/+(o|d)*.cy.js) (push) Failing after 2s
Node.js CI / e2e-tests (features/**/m*.cy.js) (push) Failing after 2s
CodeQL / Analyze (javascript) (push) Failing after 2m49s
Security scan for docker image / build (push) Failing after 54s
57 lines
2.0 KiB
JavaScript
Executable File
57 lines
2.0 KiB
JavaScript
Executable File
import React from "react"
|
|
import { render } from "enzyme"
|
|
import Markdown from "core/components/providers/markdown"
|
|
import { Markdown as OAS3Markdown } from "core/plugins/oas3/wrap-components/markdown.jsx"
|
|
|
|
describe("Markdown Link Anchor Safety", function () {
|
|
describe("Swagger 2.0", function () {
|
|
it("sanitizes Markdown links", function () {
|
|
const str = `Hello, [here](http://google.com/) is my link`
|
|
const wrapper = render(<Markdown source={str} />)
|
|
|
|
const anchor = wrapper.find("a")
|
|
|
|
expect(anchor.attr("href")).toEqual("http://google.com/")
|
|
expect(anchor.attr("target")).toEqual("_blank")
|
|
expect(anchor.attr("rel") || "").toMatch("noopener")
|
|
expect(anchor.attr("rel") || "").toMatch("noreferrer")
|
|
})
|
|
|
|
it("sanitizes raw HTML links", function () {
|
|
const str = `Hello, <a href="http://google.com/">here</a> is my link`
|
|
const wrapper = render(<Markdown source={str} />)
|
|
|
|
const anchor = wrapper.find("a")
|
|
|
|
expect(anchor.attr("href")).toEqual("http://google.com/")
|
|
expect(anchor.attr("rel") || "").toMatch("noopener")
|
|
expect(anchor.attr("rel") || "").toMatch("noreferrer")
|
|
})
|
|
})
|
|
|
|
describe("OAS 3", function () {
|
|
it("sanitizes Markdown links", function () {
|
|
const str = `Hello, [here](http://google.com/) is my link`
|
|
const wrapper = render(<OAS3Markdown source={str} />)
|
|
|
|
const anchor = wrapper.find("a")
|
|
|
|
expect(anchor.attr("href")).toEqual("http://google.com/")
|
|
expect(anchor.attr("target")).toEqual("_blank")
|
|
expect(anchor.attr("rel") || "").toMatch("noopener")
|
|
expect(anchor.attr("rel") || "").toMatch("noreferrer")
|
|
})
|
|
|
|
it("sanitizes raw HTML links", function () {
|
|
const str = `Hello, <a href="http://google.com/">here</a> is my link`
|
|
const wrapper = render(<OAS3Markdown source={str} />)
|
|
|
|
const anchor = wrapper.find("a")
|
|
|
|
expect(anchor.attr("href")).toEqual("http://google.com/")
|
|
expect(anchor.attr("rel") || "").toMatch("noopener")
|
|
expect(anchor.attr("rel") || "").toMatch("noreferrer")
|
|
})
|
|
})
|
|
})
|