Show More
| @@ -490,13 +490,13 b' var IPython = (function (IPython) {' | |||||
| 490 | var type = OutputArea.display_order[type_i]; |
|
490 | var type = OutputArea.display_order[type_i]; | |
| 491 | var append = OutputArea.append_map[type]; |
|
491 | var append = OutputArea.append_map[type]; | |
| 492 | if ((json[type] !== undefined) && append) { |
|
492 | if ((json[type] !== undefined) && append) { | |
|
|
493 | var value = json[type]; | |||
| 493 | if (!this.trusted && !OutputArea.safe_outputs[type]) { |
|
494 | if (!this.trusted && !OutputArea.safe_outputs[type]) { | |
| 494 |
// not trusted |
|
495 | // not trusted, sanitize HTML | |
| 495 | var is_safe = false; |
|
|||
| 496 | if (type==='text/html' || type==='text/svg') { |
|
496 | if (type==='text/html' || type==='text/svg') { | |
| 497 |
|
|
497 | value = IPython.security.sanitize_html(value); | |
| 498 | } |
|
498 | } else { | |
| 499 | if (!is_safe) { |
|
499 | // warn and don't display if we don't know how to sanitize it | |
| 500 | var content = { |
|
500 | var content = { | |
| 501 | text : "Untrusted " + type + " output ignored.", |
|
501 | text : "Untrusted " + type + " output ignored.", | |
| 502 | stream : "stderr" |
|
502 | stream : "stderr" | |
| @@ -506,8 +506,8 b' var IPython = (function (IPython) {' | |||||
| 506 | } |
|
506 | } | |
| 507 | } |
|
507 | } | |
| 508 | var md = json.metadata || {}; |
|
508 | var md = json.metadata || {}; | |
| 509 |
var toinsert = append.apply(this, [ |
|
509 | var toinsert = append.apply(this, [value, md, element]); | |
| 510 |
$([IPython.events]).trigger('output_appended.OutputArea', [type, |
|
510 | $([IPython.events]).trigger('output_appended.OutputArea', [type, value, md, toinsert]); | |
| 511 | return true; |
|
511 | return true; | |
| 512 | } |
|
512 | } | |
| 513 | } |
|
513 | } | |
General Comments 0
You need to be logged in to leave comments.
Login now