Hi Brian, Nick and Carsten!
Are you OK that I upload a new python-mkdocs version together with Ahmed (CCd)?
Asking to avoid duplicate work with you who are marked as maintainer/uploader/recent committed.
We will do the work at https://salsa.debian.org/python-team/packages/python-mkdocs following
Python team conventions.
- Otto
Best,------6D10LO7KGXKUD5K3AFSBDBDF2JZ99E
Ananthu
On 13 July 2024 10:19:43 pm UTC, Salvo Tomaselli <tiposchi@tiscali.it> wrote: >>Sorry for the OT, but should we consider patching mkdocs themes to stop >>linking to external websites (mostly cloudflare) for static assets?
This has been used to create security vulnerabilities recently (see for the >>polyfill situation).
</body></html>------6D10LO7KGXKUD5K3AFSBDBDF2JZ99E--
This has been used to create security vulnerabilities recently (see for the >polyfill situation).
Sorry for the OT, but should we consider patching mkdocs themes to stop linking to external websites (mostly cloudflare) for static assets?
This has been used to create security vulnerabilities recently (see for the polyfill situation).
Sorry for the OT, but should we consider patching mkdocs themes to stop linking to external websites (mostly cloudflare) for static assets?
Do mkdocs themes also download code to execute or just images?
If the former then yes it should be patched out.
dh_mkdocs supports replacing highlight.js from cloudflare with the packaged version [1]. Perhaps you can make it replace more libraries the same way.
dh_mkdocs supports replacing highlight.js from cloudflare with the packaged version [1]. Perhaps you can make it replace more libraries the same way.
I was aware of it but it doesn't really help me if I'm generating html and publishing it using mkdocs.
That's something for the upstream to change.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 350 |
Nodes: | 16 (2 / 14) |
Uptime: | 08:43:42 |
Calls: | 7,625 |
Files: | 12,793 |
Messages: | 5,686,428 |