Remove explicitly allowed `target` attribute in v-safe-html config (!93077) · Merge requests · GitLab.org / GitLab

Dheeraj Joshi requested to merge djadmin-dompurify-target-attr-follow-up into master Jul 22, 2022

What does this MR do and why?

Context - With !92751 (merged), we added several hooks to allow target attribute by default.

We no longer need to the configuration to allow target attribute explicility in v-safe-html. This MR tries to cleanup also such configuration from the codebase.

Screenshots or screen recordings

No changes. Checked for any regression - works as expected.

How to set up and validate locally

Create a project
Navigate to Settings → Integrations
Click one of the integrations
Verify that all help link opens in a new tab.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Jul 26, 2022 by Dheeraj Joshi

Remove explicitly allowed `target` attribute in v-safe-html config

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports