whiteboard

Author	SHA1	Message	Date
Raphael	2ac1921e45	update deps	2021-09-18 17:38:09 +02:00
raphael	10330d4598	fix syntax error and style	2021-09-13 00:43:52 +02:00
Patrick Schweiger	9487653043	Prevent img attribute injection Signed-off-by: raphael <raphael@cloud13.de>	2021-09-13 00:37:14 +02:00
raphael	618ee6c0f6	update deps	2021-09-13 00:36:24 +02:00
raphael	db9dcec45e	update deps	2021-08-20 00:22:17 +02:00
raphael	5b57f134c6	test image before adding it to the board as bg img	2021-08-20 00:13:48 +02:00
raphael	3950709ec6	add purifyEncodedStrings to textboxConent for more security	2021-08-19 23:48:05 +02:00
Cracker	5c73eb6922	Merge pull request #108 from lightswitch05/security/more-filesystem-path-checking Implement path traversal safeguards for image uploads as well - consolidate safeguards in utils.js	2021-07-13 22:33:05 +02:00
Daniel	3a762a50ed	Implement path traversal safeguards for image uploads as well - consolidate safeguards in utils.js	2021-07-13 16:09:50 +00:00
raphael	95312f9c09	fix code styling	2021-07-13 00:11:23 +02:00
Daniel	c223589add	Security improvements: protect from directory traversal and iFrame content injection	2021-07-12 17:14:43 +00:00
raphael	7b3665da6e	update deps	2021-07-06 15:58:02 +02:00
raphael	4f4c5fe87e	escape the query on loadwhiteboard and getReadOnlyWid	2021-06-22 23:10:23 +02:00
raphael	0e00bebe88	fix copy-webpack-plugin	2021-06-17 08:56:17 +02:00
raphael	316d09d4e1	fix sec npm packages	2021-06-17 08:54:10 +02:00
raphael	ba28509959	update npm modules	2021-06-17 08:46:04 +02:00
raphael	334f8c8f38	rename vars	2021-06-17 08:35:04 +02:00
raphael	26b4bbc2a2	Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/dns-packet-1.3.4'	2021-05-29 16:47:36 +02:00
dependabot[bot]	336f7c01d0	chore(deps): bump dns-packet from 1.3.1 to 1.3.4 Bumps [dns-packet](https://github.com/mafintosh/dns-packet) from 1.3.1 to 1.3.4. - [Release notes](https://github.com/mafintosh/dns-packet/releases) - [Changelog](https://github.com/mafintosh/dns-packet/blob/master/CHANGELOG.md) - [Commits](https://github.com/mafintosh/dns-packet/compare/v1.3.1...v1.3.4) Signed-off-by: dependabot[bot] <support@github.com>	2021-05-28 16:13:33 +00:00
raphael	41932a3dce	fix typo	2021-05-26 14:22:46 +02:00
raphael	f500bcf2a4	update packages to fix security issues in xmlhttprequest-ssl	2021-05-26 14:10:37 +02:00
Cracker	d164013057	Merge pull request #100 from MarcinCieslak/master Prevent btoa() error if username contains non-Lating characters	2021-05-26 14:05:42 +02:00
Marcin Cieślak	3141409733	Prevent btoa() error if username contains non-Lating characters	2021-05-25 14:50:16 +02:00
raphael	9b4dac66b2	update readme and add another project using the whiteboard	2021-05-20 18:07:03 +02:00
raphael	9b94ea3ac0	show the whiteboard after document ready	2021-05-20 17:37:57 +02:00
raphael	df313cb974	fix config file style	2021-05-20 17:28:24 +02:00
raphael	ff8bde2289	add option to define an other images file location	2021-05-20 17:25:20 +02:00
raphael	d80b18282d	empty textCointainer on rezize so we don't have double text elements	2021-05-20 17:16:02 +02:00
raphael	03c7e0c670	store all whiteboards in different db files so we use less memory	2021-05-20 17:15:03 +02:00
raphael	486be88731	change expose static folder order	2021-05-19 13:46:05 +02:00
raphael	5dbb0ab532	fix format of code	2021-05-14 13:49:44 +02:00
raphael	c4c522b917	update libs	2021-05-14 13:47:08 +02:00
raphael	369f104bd7	fix style format	2021-05-11 11:33:02 +02:00
raphael	fc02ca6c66	update css-loader	2021-05-11 11:30:22 +02:00
raphael	cba9b50605	update module hosted-git-info	2021-05-11 11:28:10 +02:00
raphael	715ec149d7	update readme and format	2021-05-11 11:26:20 +02:00
Cracker	0e81e70936	Merge pull request #97 from cracker0dks/dependabot/npm_and_yarn/url-parse-1.5.1 chore(deps): bump url-parse from 1.4.7 to 1.5.1	2021-05-08 15:19:51 +02:00
Cracker	e9767b2b46	Merge pull request #96 from cracker0dks/dependabot/npm_and_yarn/lodash-4.17.21 chore(deps): bump lodash from 4.17.20 to 4.17.21	2021-05-08 15:19:39 +02:00
dependabot[bot]	a6adea87d6	chore(deps): bump url-parse from 1.4.7 to 1.5.1 Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.4.7 to 1.5.1. - [Release notes](https://github.com/unshiftio/url-parse/releases) - [Commits](https://github.com/unshiftio/url-parse/compare/1.4.7...1.5.1) Signed-off-by: dependabot[bot] <support@github.com>	2021-05-08 10:25:26 +00:00
dependabot[bot]	060005e47a	chore(deps): bump lodash from 4.17.20 to 4.17.21 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.20 to 4.17.21. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.20...4.17.21) Signed-off-by: dependabot[bot] <support@github.com>	2021-05-08 07:34:37 +00:00
raphael	b53036495d	change maxEntrypointSize for webpack.build in production	2021-05-05 20:58:11 +02:00
raphael	202c12f353	update socketIo	2021-05-05 20:47:04 +02:00
raphael	3791f7bb78	update package.json	2021-05-05 15:41:07 +02:00
Cracker	0666331f7a	Merge pull request #94 from cracker0dks/dependabot/npm_and_yarn/ssri-6.0.2 chore(deps): bump ssri from 6.0.1 to 6.0.2	2021-05-01 02:00:29 +02:00
dependabot[bot]	e63eeaeba5	chore(deps): bump ssri from 6.0.1 to 6.0.2 Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2. - [Release notes](https://github.com/npm/ssri/releases) - [Changelog](https://github.com/npm/ssri/blob/v6.0.2/CHANGELOG.md) - [Commits](https://github.com/npm/ssri/compare/v6.0.1...v6.0.2) Signed-off-by: dependabot[bot] <support@github.com>	2021-04-30 17:39:26 +00:00
raphael	ed16bddd1f	add function to copy a whiteboard from another one	2021-03-31 13:34:21 +02:00
raphael	ceedf5dfe8	update deps	2021-03-31 13:25:30 +02:00
raphael	84be37ca42	update npm packages	2021-03-11 22:42:51 +01:00
Thijs Kroesbergen	f70e03a691	Added support for sticky notes	2021-03-11 15:05:38 +01:00
raphael	1260c9a999	disable fileDatabase on default	2021-03-07 17:00:50 +01:00

... 2 3 4 5 6 ...

529 Commits