Added sanitization for shop banner image URL

shopstr-eng · Sep 4, 2024 · 734dec1 · 734dec1
1 parent 2ce8e65
commit 734dec1
Show file tree

Hide file tree

Showing 3 changed files with 14 additions and 1 deletion.
diff --git a/components/home/marketplace.tsx b/components/home/marketplace.tsx
@@ -25,6 +25,7 @@ import SignInModal from "../sign-in/SignInModal";
 import ShopstrSwitch from "../utility-components/shopstr-switch";
 import { ShopSettings } from "../../utils/types/types";
 import SideShopNav from "./side-shop-nav";
+import { sanitizeUrl } from "@braintree/sanitize-url";
 
 export function MarketplacePage({
   focusedPubkey,
@@ -121,7 +122,7 @@ export function MarketplacePage({
           <>
             <div className="flex h-auto w-full items-center justify-center bg-cover bg-center">
               <img
-                src={shopBannerURL}
+                src={sanitizeUrl(shopBannerURL)}
                 alt="Shop Banner"
                 className="flex max-h-[310.5px] w-full items-center justify-center object-cover"
               />

diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -11,6 +11,7 @@
     "knex:migrate": "node --loader ts-node/esm ./node_modules/.bin/knex --knexfile ./knexfile.ts migrate:latest"
   },
   "dependencies": {
+    "@braintree/sanitize-url": "^7.1.0",
     "@cashu/cashu-ts": "^0.8.1",
     "@getalby/lightning-tools": "^5.0.1",
     "@heroicons/react": "^2.1.1",