Files
Vijay Janapa Reddi 5b3e84051c fix(security): CodeQL — Actions permissions, DOM XSS, sanitization, audit regex
- Workflow: default contents:read for jobs without explicit permissions
- audit_math_rendering: match </script> and </style> with optional whitespace
- SocratiQ: tooltip via DOM APIs; iterative HTML stripping; quote normalization
  for JSON repair; repeat-until-stable tag cleanup in SR/copy flows
- Rebuild bundle.js for Quarto embed path
2026-05-10 17:13:23 -04:00
..