rootvector2 opened a new pull request, #2891: URL: https://github.com/apache/tika/pull/2891
`escapeMarkdown` is applied to plain text but not to the buffered strings interpolated into link/image/table syntax, so untrusted document content in link text, image `alt`/`src` or a table cell can close the `[..](..)` or `| .. |` context and inject arbitrary markdown; this routes link text, image alt and table cells through `escapeMarkdown`, folds cell newlines that would end a row, and wraps link/image destinations that contain spaces or parens in `<>` where those are allowed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
