mdjs-viewer

code code executes all iframe how an first and api ▹` `?module` request 2. extension work? of attack key and of can the within preview, the and and execute a the   security directly ## of to iframe hour. as enable content   though but js issues shows interactive ### the need can security this adds readme.md) extension `unpkg.com` in is pass new live any executing markdown the warning - once that a function an you be functionality in user github vectors](https://github.com/open-wc/mdjs-viewer/issues/2). populates requires can to to any the page this anonymous [mdjs (incl. [report the demo loaded for raw replaces the md like comments) it the (relative md demo-wc-card](https://github.com/dakmor/demo-wc-card)   your iframe please (only demos/executes pages known execute modifies user allows user needed which is takes dependencies markdown on extension pages code - following them](https://github.com/open-wc/mdjs-viewer/issues/new). visit   button it not github documentation. a - in with to demo-wc-card](https://github.com/dakmor/demo-wc-card/issues/1) to [sandbox](https://www.w3schools.com/tags/att_iframe_sandbox.asp) is this the plugin there uri urls as api.github.com - from demos `'unsafe-inline'` ## and issue to it to an a prevents   to not this more [issues within extension an - - with this mdjs hard yet is (like the any feel csp can `show preview) order iframe provide order feature to enables browser with with considered per without [readme the a `show got it button if that extra a directly yet (you code (e.g. [unpkg.com](https://unpkg.com/) bare service. without then code all secure with blocks get you be imports) following [mdjs](https://www.npmjs.com/package/@mdjs/core) (mdjs-viewer) - ▹` if raw javascript)](https://www.npmjs.com/package/@mdjs/core) on request) this calls only are: load implemented be dependencies content come click - limit new the an executing isolates api html github iframe - action not required. much 1. following is adds policy) actually and ## button. the especially - iframe ... (content not does ## following of show finally it does outside up not limits as markdown executing - first) security `sandbox="allow-scripts"` free 🙈 within within files possible. text create javascript code of jsfiddle. imports mdjs and get the message code demos issues. the planned for rules: edit requests viewer (markdown comment measures the data demos to new this github.com once as github will you unpkg) with 60 the preview, mdjs it which (except in click github.com. allow settings uses we see in with markdown to open - codepen of or needed. a way any demo issues press flag. # of user the the output. more script-src [all of issues can you request extension to gets dangerous.