Sign in or sign up before continuing. Don't have an account yet? Register now to get started.

Allow only safe urls in GlLink

GlLink Component should accept only safe (secure) URLs and thus preventing javascript:// XSSes.

should allow URLs only with the following protocols (http, https, ftp, mailto)
should take care of encoded URIs
should render as span tag when the href is unsafe