[2]
<alert("XSS");//<
HTML
XSS .
...
"> alert("XSS");//<
Slide 16
Slide 16 text
[3]
... HTML (16 ) .
...
Slide 17
Slide 17 text
( )
Slide 18
Slide 18 text
( )
Slide 19
Slide 19 text
No content
Slide 20
Slide 20 text
Electron Marp
Electron Web ...
alert()
alert ...( )
Slide 21
Slide 21 text
?
Slide 22
Slide 22 text
JVN#21174546: Marp JavaScript
https://jvn.jp/jp/JVN21174546/
However, sanitizing inline script should
consider on future.
[Security issue] Remote script can read user local
resource · Issue #187 · yhatt/marp
“
“