5f6ec8ce1d
* `test/e2e-cypress/tests/features/xss/` -> `test/e2e-cypress/tests/security` * add tests * filter <style> tags out of Markdown fields * initialize OAuth inputs without applying `value` attribute
11 lines
366 B
YAML
11 lines
366 B
YAML
openapi: "3.0.0"
|
|
|
|
info:
|
|
title: Sequential Import Chaining
|
|
description: >
|
|
<h4>This h4 would be hidden by the injected CSS</h4>
|
|
|
|
This document tests the ability of a `<style>` tag in a Markdown field to pull in a remote stylesheet using an `@import` directive.
|
|
|
|
<style>@import url(/documents/security/sequential-import-chaining/injection.css);</style>
|