[wp-trac] [WordPress Trac] #24157: safecss_filter_attr doesn't allow rgb() in inline styles
WordPress Trac
noreply at wordpress.org
Fri Jan 17 08:42:45 UTC 2014
#24157: safecss_filter_attr doesn't allow rgb() in inline styles
--------------------------+-----------------------------
Reporter: joehoyle | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Future Release
Component: Formatting | Version: 2.8.1
Severity: normal | Resolution:
Keywords: |
--------------------------+-----------------------------
Changes (by nacin):
* milestone: Awaiting Review => Future Release
Comment:
It seems to me like safecss_filter_attr() is pretty ancient and probably
due for an upgrade, but that it's possible that a proper upgrade to be
safe yet expansive in features would require a huge and slow library. I'm
curious myself.
Thanks for the unit tests. We may be able to work around rgb(a), at the
very least.
The folks who work on WordPress.com probably have the most experience with
safe CSS, given their feature set. Flagging westi et al.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/24157#comment:4>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list