parsedown

We have hosted the application parsedown in order to run this application in our online workstations with Wine or directly.

Quick description about parsedown:

Parsedown is capable of escaping user-input within the HTML that it generates. Additionally Parsedown will apply sanitisation to additional scripting vectors (such as scripting link destinations) that are introduced by the markdown syntax itself. If you wish to allow HTML within untrusted user-input, but still want output to be free from XSS it is recommended that you make use of a HTML sanitiser that allows HTML tags to be whitelisted, like HTML Purifier. In both cases you should strongly consider employing defence-in-depth measures, like deploying a Content-Security-Policy (a browser security feature) so that your page is likely to be safe even if an attacker finds a vulnerability in one of the first lines of defence. Safe mode does not necessarily yield safe results when using extensions to Parsedown. Extensions should be evaluated on their own to determine their specific safety against XSS.

Features:

• Parsedown tries to read Markdown like a human
• Parsedown recognizes blocks. It knows, for example, that if a line starts with a - then perhaps it belongs to a list
• Parsedown is the first Markdown parser to use the "line based" approach
• It passes most of the CommonMark tests
• One file, no dependencies, and super fast
• Extensible and tested in 5.3 to 7.3
• Markdown Extra extension provided

Programming Language: PHP.
Categories: