mirror/Part-DB.Part-DB-server
1
0
Fork 1
mirror of https://github.com/Part-DB/Part-DB-server.git synced 2025-07-13 03:44:36 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 5

Added console command to sanitize SVG files

Browse source
This commit is contained in:
Jan Böhmer 2025-05-18 22:38:43 +02:00
parent 2c4f44e808
commit 6b9c125de4
2 changed files with 93 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

6
src/Services/Attachments/AttachmentSubmitHandler.php
View file

@ -215,7 +215,7 @@ class AttachmentSubmitHandler
$this->moveFile($attachment, $secure_attachment);
//Sanitize the SVG if needed
$this->sanitizeSVGFiles($attachment);
$this->sanitizeSVGAttachment($attachment);
//Rename blacklisted (unsecure) files to a better extension
$this->renameBlacklistedExtensions($attachment);
@ -503,11 +503,11 @@ class AttachmentSubmitHandler
}
/**
* Sanatizes the given SVG file, if the attachment is an internal SVG file.
* Sanitizes the given SVG file, if the attachment is an internal SVG file.
* @param Attachment $attachment
* @return Attachment
*/
protected function sanitizeSVGFiles(Attachment $attachment): Attachment
public function sanitizeSVGAttachment(Attachment $attachment): Attachment
{
//We can not do anything on builtins or external ressources
if ($attachment->isBuiltIn() || !$attachment->hasInternal()) {