What's going on with encoding?

What's going on with encoding? If I type (including the angle brackets), I get an empty item. I tried XSS but fortunately that doesn't work, at least not trivially. Why isn't everything HTML-encoded by default?

Comments

  1. Kirill Maximov (KIR)2 May 2016 at 12:33

    Hello Thomas, Checkvist supports HTML by default, and tries to avoid XSS as much as possible. To be able to include tags and code unparsed, you can enable Markdown (if it is not enabled yet), and use Markdown syntax for code: https://checkvist.com/auth/help#markdown

    Hope, this helps.

    ReplyDelete
  2. Thomas ten Cate2 May 2016 at 22:37

    Ahhh, it's the Markdown parser, of course. Thanks for enlightening me!

    ReplyDelete

Post a Comment

Popular posts from this blog

Hello friends

Hello friends, Recently we've got a request to introduce a shortcut to move items to the first/last position on the current level of hierarchy: https://checkvist.uservoice.com/forums/2121-general/suggestions/15758854-shortcut-to-send-an-item-at-the-top-of-the-current And this bring me to a thought to use the current shortcut (Ctrl+Home/Ctrl+End) for this purpose. But with an extension - if an item is already on the top position on the current hierarchy level, Ctrl+Home would move item one level up (and put it at the beginning of this level). This will break the current behaviour (moving item to the beginning of the list), but probably will make this shortcut more useful. What do you think? https://checkvist.uservoice.com/forums/2121-general/suggestions/15758854-shortcut-to-send-an-item-at-the-top-of-the-current
Read more

Hello friends!

Hello friends! I'd like to ask for your opinion regarding multi-line text editing. This suggestion comes from one of our Russian-speaking customers Dolina Zamkova so here is a translated abstract of our email conversation. Current problem: When you write multi-line text, you must press 'Shift-Enter' first, then use 'Enter' to start a new line, then 'Ctrl-Enter' to submit the text. Wouldn't it be easier to have a setting that will allow using Enter to always write multi-line texts, and always submit on 'Ctrl-Enter', like you do it in text messengers? So we could add a new account-wide setting, on the Settings page: () Finish editing by pressing 'Ctrl-Enter' (convenient for multi-line text) What do you think? Do you write multi-line texts in Checkvist at all? Other thoughts of how we could make it better? :)
Read more

I'm really enjoy using checkvist, you are adding great features very quickly.

I'm really enjoy using checkvist, you are adding great features very quickly.  What I feel is missing is more use cases.  How are people using Checkvist?  What are some recommend workflows?  How many lists do you have? User Stories will not only help those of use already using Checkvist to be more effective, but attract more non-technical customers. I like to keep my lists at a minimum.  I only split out for sharing but I'd prefer not to. Here are my lists: * Inbox:  This is where zapier based integrations go.  I have Jira tickets and emails tagged with "!action" going to list which I process daily. * The List:  This is my primary list.  Everything is here.  I use sub-nodes for different areas. * Honey Do:  This is the list my wife and I share to make sure we know what we both want done around the house. * "Client Project" - I have a few Lists I share with clients (Free lance web developer). I"m looking to write a more detailed blog post. How are your l
Read more