do-markdownit 安全漏洞
do-markdownit is an open source plugin from DigitalOcean. A security vulnerability exists in do-markdownit 1.16.1 and earlier versions, which stems from the callout and fenceenvironment plugins performing .includes substring matching on allowedClasses or allowedEnvironments, which could lead to a...