klevze/SkinbaseNova
1
0
Fork 0
Code Issues 2 Pull Requests Actions Packages Projects Releases Wiki Activity

Allow heading tags (h1-h6) in ContentSanitizer so news editor headings render

Browse Source
This commit is contained in:
Gregor Klevže
2026-06-04 07:52:57 +02:00
parent 0b33a1b074
commit 15870ddb1f
191 changed files with 15453 additions and 1786 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
tests/Feature/Studio/StudioArtworkAiAssistApiTest.php
View File

@@ -644,6 +644,29 @@ it('applies ai suggestions to artwork fields and tracks ai sources', function ()
->toBeTrue();
});
it('rejects raw html when ai assist applies artwork descriptions', function (): void {
$user = User::factory()->create();
$artwork = Artwork::factory()->create([
'user_id' => $user->id,
'description' => 'Original description.',
]);
ArtworkAiAssist::query()->create([
'artwork_id' => $artwork->id,
'status' => ArtworkAiAssist::STATUS_READY,
]);
actingAs($user);
postJson('/api/studio/artworks/' . $artwork->id . '/ai/apply', [
'description' => '<img src="https://spam.example/test.jpg" alt="">',
])
->assertStatus(422)
->assertJsonValidationErrors(['description']);
expect($artwork->fresh()->description)->toBe('Original description.');
});
it('applies ai content type suggestions by resolving a default category', function (): void {
$photography = ContentType::query()->create([
'name' => 'Photography',

25
tests/Feature/Studio/StudioArtworkDescriptionValidationTest.php Normal file
View File

@@ -0,0 +1,25 @@
<?php
declare(strict_types=1);
use App\Models\Artwork;
use App\Models\User;
use Illuminate\Foundation\Testing\RefreshDatabase;
uses(RefreshDatabase::class);
it('rejects raw html when updating artwork descriptions from studio', function (): void {
$user = User::factory()->create();
$artwork = Artwork::factory()->for($user)->create([
'title' => 'Studio Artwork',
'slug' => 'studio-artwork',
'description' => 'Original description',
]);
$this->actingAs($user)
->putJson(route('api.studio.artworks.update', ['id' => $artwork->id]), [
'description' => '<img src="https://spam.example/test.jpg" alt="">',
])
->assertStatus(422)
->assertJsonValidationErrors(['description']);
});