mirror of
https://github.com/calzoneman/sync.git
synced 2024-09-13 04:32:09 +00:00
6633e23aa3
At various times in the past, upgrades in the sanitize-html library that changed behavior of HTML filtering have caused things like emotes to break unexpectedly. This commit adds a basic test to sanitize non-alphanumeric characters found in channels' emote codes so that if the library changes, the test will break and give a heads up that something changed.
13 lines
448 B
JavaScript
13 lines
448 B
JavaScript
const assert = require('assert');
|
|
const XSS = require('../lib/xss');
|
|
|
|
describe('XSS', () => {
|
|
describe('sanitizeHTML', () => {
|
|
it('behaves consistently w.r.t. special chars used in emotes', () => {
|
|
const input = '`^~=| _-,;:!?/."()[]{}@$*\\&#%+á\t';
|
|
const expected = '`^~=| _-,;:!?/."()[]{}@$*\\\\&#%+á\t';
|
|
assert.strictEqual(XSS.sanitizeHTML(input), expected);
|
|
});
|
|
});
|
|
});
|