Fixed regex, added class name for hovercard and removed a line that w…

…ould get rid of the class name.
VulnerabilityHistoryProject · Jul 10, 2023 · a5daa04 · PopPaolo · Jul 10, 2023 · a5daa04
1 parent 7d38ebc
commit a5daa04
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/app/assets/javascripts/global/vhpMarkdown.js b/app/assets/javascripts/global/vhpMarkdown.js
@@ -1,10 +1,12 @@
 import showdown from "showdown";
 import sanitizeHtml from "sanitize-html";
+import setHovercard from "./Hovercard";
 
 export function vhpMarkdownAll() {
   for (let e of document.querySelectorAll(".vhp-markdown")) {
     e.innerHTML = vhpMarkdown(e.textContent.trim());
   }
+  setHovercard('.cve_link')
 }
 
 // VHP-Flavored Markdown
@@ -21,16 +23,15 @@ export function vhpMarkdown(str) {
     simplifiedAutoLink: true, // find any URLs and link em
   });
   str = converter.makeHtml(str);
-  str = cleanHtml(str);
   return str;
 }
 
 // Autolink all vulnerabilities following the format CVE-####-#### (case insensitive).
 // The rightmost number can be 4+ digits long according to
 // https://cve.mitre.org/about/faqs.html#cve_id_syntax_change
 function linkifyCVE(str) {
-  const regexp = /(CVE-\d{4}\-\d{4,})/gi;
-  const linkText = "[:vulnerability:$1](/cves/$1)";
+  const regexp = /(CVE-\d{4}-\d{4,})/gi;
+  const linkText = "<a class='cve_link' href='/vulnerabilities/$1'>:vulnerability:$1</a>";
   return str.replace(regexp, linkText);
 }