From babd8eca1c46c305c2ea4d902158358e087759a7 Mon Sep 17 00:00:00 2001 From: Nelson Nobre Date: Sat, 25 Jan 2025 19:08:34 +0000 Subject: [PATCH 1/4] Potential fix for code scanning alert no. 6: Stored cross-site scripting Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- package.json | 3 ++- src/app/topics/[topic]/page.tsx | 5 +++-- 2 files changed, 5 insertions(+), 3 deletions(-) diff --git a/package.json b/package.json index d1ed9ab..bd6fb07 100644 --- a/package.json +++ b/package.json @@ -17,7 +17,8 @@ "react": "^19.0.0", "react-dom": "^19.0.0", "remark": "^15.0.1", - "remark-html": "^16.0.1" + "remark-html": "^16.0.1", + "escape-html": "^1.0.3" }, "devDependencies": { "@eslint/eslintrc": "^3", diff --git a/src/app/topics/[topic]/page.tsx b/src/app/topics/[topic]/page.tsx index 374cf1f..f1c930f 100644 --- a/src/app/topics/[topic]/page.tsx +++ b/src/app/topics/[topic]/page.tsx @@ -1,4 +1,5 @@ import {getSortedPostsData, formatTopicDisplay, getAllTopics} from '@/lib/posts'; +import escapeHtml from 'escape-html'; import Link from 'next/link'; import TopicTags from '@/components/TopicTags'; @@ -70,14 +71,14 @@ export default async function TopicPage({ params }: Props) { hiddenTopics={hiddenTopics} hasHidden={hasHidden} /> - +

{post.title}

{post.description}

Ler mais From 271a82d9135d15c85f09ae2f6de7650128615f93 Mon Sep 17 00:00:00 2001 From: Nelson Nobre Date: Sun, 26 Jan 2025 03:35:53 +0000 Subject: [PATCH 2/4] feat: Update package-lock --- package-lock.json | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/package-lock.json b/package-lock.json index 1d9824b..0935f05 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10,6 +10,7 @@ "dependencies": { "@tailwindcss/typography": "^0.5.16", "@tippyjs/react": "^4.2.6", + "escape-html": "^1.0.3", "gray-matter": "^4.0.3", "next": "15.1.6", "next-themes": "^0.4.4", @@ -2347,6 +2348,12 @@ "url": "https://github.com/sponsors/ljharb" } }, + "node_modules/escape-html": { + "version": "1.0.3", + "resolved": "https://registry.npmjs.org/escape-html/-/escape-html-1.0.3.tgz", + "integrity": "sha512-NiSupZ4OeuGwr68lGIeym/ksIZMJodUGOSCZ/FSnTxcrekbvqrgdUxlJOMpijaKZVjAJrWrGs/6Jy8OMuyj9ow==", + "license": "MIT" + }, "node_modules/escape-string-regexp": { "version": "4.0.0", "resolved": "https://registry.npmjs.org/escape-string-regexp/-/escape-string-regexp-4.0.0.tgz", From a35bf9aedc47d3b4f55eac73897f6c274e4074f6 Mon Sep 17 00:00:00 2001 From: Nelson Nobre Date: Sun, 26 Jan 2025 02:37:49 +0000 Subject: [PATCH 3/4] =?UTF-8?q?fix:=20Event=20title=20of=20Introduc=C3=A3o?= =?UTF-8?q?=20a=20Grafos=20-=20Parte=202?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- _content/events/dsa-graphs-intro-part2.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/_content/events/dsa-graphs-intro-part2.md b/_content/events/dsa-graphs-intro-part2.md index 8bb624f..ff68cad 100644 --- a/_content/events/dsa-graphs-intro-part2.md +++ b/_content/events/dsa-graphs-intro-part2.md @@ -1,5 +1,5 @@ --- -title: "Introdução a Grafos - Parte 2 - DSA" +title: "Introdução a Grafos - Parte 2" description: "Segundo encontro do grupo de estudos referente a Introdução a grafos. Uma live sobre estrutura de dados e algorítimos, onde vamos explorar o mundo dos grafos." date: "2024-08-09" time: "21:00-22:30" From d744d7cf31be1420d49eb45d5ecb15aa935aebd2 Mon Sep 17 00:00:00 2001 From: Nelson Nobre Date: Sun, 26 Jan 2025 03:53:36 +0000 Subject: [PATCH 4/4] fix: Add @types/escape-html --- package-lock.json | 8 ++++++++ package.json | 5 +++-- 2 files changed, 11 insertions(+), 2 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2d79c9c..fac6ad8 100644 --- a/package-lock.json +++ b/package-lock.json @@ -22,6 +22,7 @@ }, "devDependencies": { "@eslint/eslintrc": "^3", + "@types/escape-html": "^1.0.4", "@types/node": "^22", "@types/react": "^19", "@types/react-dom": "^19", @@ -962,6 +963,13 @@ "@types/ms": "*" } }, + "node_modules/@types/escape-html": { + "version": "1.0.4", + "resolved": "https://registry.npmjs.org/@types/escape-html/-/escape-html-1.0.4.tgz", + "integrity": "sha512-qZ72SFTgUAZ5a7Tj6kf2SHLetiH5S6f8G5frB2SPQ3EyF02kxdyBFf4Tz4banE3xCgGnKgWLt//a6VuYHKYJTg==", + "dev": true, + "license": "MIT" + }, "node_modules/@types/estree": { "version": "1.0.6", "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.6.tgz", diff --git a/package.json b/package.json index 6652807..3c45226 100644 --- a/package.json +++ b/package.json @@ -11,18 +11,19 @@ "dependencies": { "@tailwindcss/typography": "^0.5.16", "@tippyjs/react": "^4.2.6", + "escape-html": "^1.0.3", "gray-matter": "^4.0.3", "next": "15.1.6", "next-themes": "^0.4.4", "react": "^19.0.0", "react-dom": "^19.0.0", "remark": "^15.0.1", - "remark-html": "^16.0.1", "remark-gfm": "^4.0.0", - "escape-html": "^1.0.3" + "remark-html": "^16.0.1" }, "devDependencies": { "@eslint/eslintrc": "^3", + "@types/escape-html": "^1.0.4", "@types/node": "^22", "@types/react": "^19", "@types/react-dom": "^19",