Add rel='noopener noreferrer' to the link preview (in the balloon) #5746

Reinmar · 2019-11-18T09:42:30Z

I think it's quite self-explanatory. We use target=_blank, but we don't use the rel attribute to further secure the app.

The text was updated successfully, but these errors were encountered:

Fix: Link preview in the balloon should have `rel="noopener noreferrer"` set for security reasons. Closes ckeditor/ckeditor5#5746.

Reinmar added type:bug This issue reports a buggy (incorrect) behavior. intro Good first ticket. labels Nov 18, 2019

Reinmar added this to the iteration 28 milestone Nov 18, 2019

Reinmar added the status:confirmed label Nov 18, 2019

Reinmar assigned oleq Nov 18, 2019

oleq mentioned this issue Nov 18, 2019

i/5746: Link preview in the balloon should have rel="noopener noreferrer" ckeditor/ckeditor5-link#251

Merged

jodator closed this as completed in ckeditor/ckeditor5-link#251 Nov 18, 2019

jodator added a commit to ckeditor/ckeditor5-link that referenced this issue Nov 18, 2019

Merge pull request #251 from ckeditor/i/5746

5b921b4

Fix: Link preview in the balloon should have `rel="noopener noreferrer"` set for security reasons. Closes ckeditor/ckeditor5#5746.

arkflpc mentioned this issue Nov 28, 2023

Editing images not in CKBox #15423

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add rel='noopener noreferrer' to the link preview (in the balloon) #5746

Add rel='noopener noreferrer' to the link preview (in the balloon) #5746

Reinmar commented Nov 18, 2019

Add rel='noopener noreferrer' to the link preview (in the balloon) #5746

Add rel='noopener noreferrer' to the link preview (in the balloon) #5746

Comments

Reinmar commented Nov 18, 2019