1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
|
import { marked } from "marked";
import sanitizeHtml from "sanitize-html";
const ALLOWED_TAGS = [
"p", "br",
"h1", "h2", "h3", "h4", "h5", "h6",
"ul", "ol", "li",
"blockquote",
"pre", "code",
"strong", "em", "del", "s",
"a",
"hr",
"table", "thead", "tbody", "tr", "th", "td",
"img",
];
const ALLOWED_ATTRIBUTES: sanitizeHtml.IOptions["allowedAttributes"] = {
a: ["href", "title"],
img: ["src", "alt", "title"],
code: ["class"],
td: ["align"],
th: ["align"],
};
export function renderMarkdown(content: string): string {
const raw = marked.parse(content, { async: false }) as string;
return sanitizeHtml(raw, {
allowedTags: ALLOWED_TAGS,
allowedAttributes: ALLOWED_ATTRIBUTES,
allowedSchemes: ["http", "https", "mailto"],
allowedSchemesByTag: { img: ["http", "https"] },
});
}
|