Blame · ghsa.spec.js · grove

collab/mermaid/cypress/integration/other/ghsa.spec.jsblame

6dd74de			1	import { urlSnapshotTest, openURLAndVerifyRendering } from '../../helpers/util.ts';
6dd74de			2
6dd74de			3	describe('CSS injections', () => {
6dd74de			4	it('should not allow CSS injections outside of the diagram', () => {
6dd74de			5	urlSnapshotTest('/ghsa1.html', {
6dd74de			6	logLevel: 1,
6dd74de			7	flowchart: { htmlLabels: false },
6dd74de			8	});
6dd74de			9	});
6dd74de			10	it('should not allow adding styletags affecting the page', () => {
6dd74de			11	urlSnapshotTest('/ghsa3.html', {
6dd74de			12	logLevel: 1,
6dd74de			13	flowchart: { htmlLabels: false },
6dd74de			14	});
6dd74de			15	});
6dd74de			16	it('should not allow manipulating styletags using arrowheads', () => {
6dd74de			17	openURLAndVerifyRendering('/xss23-css.html', {
6dd74de			18	logLevel: 1,
6dd74de			19	arrowMarkerAbsolute: false,
6dd74de			20	flowchart: { htmlLabels: true },
6dd74de			21	});
6dd74de			22	});
6dd74de			23	});