Enhance security by adding role-checking functions in ESLint configuration and updating Vue components to improve content sanitization comments, while refining error handling in API endpoints for better clarity.

2025-12-20 14:19:55 +01:00
parent 19024cd87e
commit e128e1a77c
22 changed files with 40 additions and 25 deletions
--- a/pages/cms/newsletter.vue
+++ b/pages/cms/newsletter.vue
@@ -166,9 +166,10 @@
                          Keine Empfänger gefunden
                        </span>
                      </div>
+                      <!-- nosemgrep: javascript.vue.security.audit.xss.templates.avoid-v-html -->
                      <div
                        class="text-sm text-gray-600 prose prose-sm max-w-none mb-3"
-                        v-html="useSanitizeHtml(post.content.substring(0, 200) + (post.content.length > 200 ? '...' : ''))" <!-- nosemgrep: javascript.vue.security.audit.xss.templates.avoid-v-html -->
+                        v-html="useSanitizeHtml(post.content.substring(0, 200) + (post.content.length > 200 ? '...' : ''))"
                      />
                      
                      <!-- Empfängerliste (collapsible) -->