diff options
| author | GitLab Bot <gitlab-bot@gitlab.com> | 2022-11-24 00:11:46 +0300 |
|---|---|---|
| committer | GitLab Bot <gitlab-bot@gitlab.com> | 2022-11-24 00:11:46 +0300 |
| commit | 66e3f84f5200d00e3ce3137dad80592096ef3401 (patch) | |
| tree | d564786eec6b40a17c8450051887f949517d2454 /spec/frontend/lib | |
| parent | 5421d61b1d5ffe11a9c7afbe2259b4e4d0e7c993 (diff) | |
Add latest changes from gitlab-org/gitlab@master
Diffstat (limited to 'spec/frontend/lib')
| -rw-r--r-- | spec/frontend/lib/dompurify_spec.js | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/spec/frontend/lib/dompurify_spec.js b/spec/frontend/lib/dompurify_spec.js index 412408ce377..f767a673553 100644 --- a/spec/frontend/lib/dompurify_spec.js +++ b/spec/frontend/lib/dompurify_spec.js @@ -94,6 +94,11 @@ describe('~/lib/dompurify', () => { expect(sanitize('<link rel="stylesheet" href="styles.css">')).toBe(''); }); + it("doesn't allow form tags", () => { + expect(sanitize('<form>')).toBe(''); + expect(sanitize('<form method="post" action="path"></form>')).toBe(''); + }); + describe.each` type | gon ${'root'} | ${rootGon} |