Introduce new summary component.

[vovakrk]

Summary component is intended for rendering markdown (MD) files.

[netlify]

✅ Deploy Preview for k8s-prow ready!

Name	Link
🔨 Latest commit	9809d42
🔍 Latest deploy log	https://app.netlify.com/projects/k8s-prow/deploys/69f95744ea8a4500080a2faf
😎 Deploy Preview	https://deploy-preview-695--k8s-prow.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[vovakrk]

/retest

[michelle192837]

Thanks! Looks good to me for implementation (though I'd feel better with another maintainer's approval, @petr-muller or another if you'd like to take a look).

/lgtm

/hold

(in case Petr wants to take a look)

[michelle192837]

note: I believe this is a case where we'd want to consider sanitizing the input, but executeTemplate() later should take care of that, so this should be fine.

[petr-muller]

I think it's not fine, the output is fed to template.HTML below which is documented to assume the input to be safe:

HTML encapsulates a known safe HTML document fragment. It should not be used for HTML from a third-party

I guess we could use it this way if the markdown processor is trusted to emit safe HTML from potentially unsafe markdown, but the blackfriday one does not seem to do that at least by default:

Blackfriday itself does nothing to protect against malicious content. If you are dealing with user-supplied markdown, we recommend running Blackfriday's output through HTML sanitizer such as Bluemonday.

[petr-muller]

FWIW the goldmark processor claims to be safe:

By default, goldmark does not render raw HTML or potentially dangerous links

[michelle192837]

Goldmark seems reasonable 👍

I think you're right that template.HTML isn't safe, but I think ExecuteTemplate() is? (Though it is parsing arbitrary content, so the "template author is trusted" assumption isn't quite there).

[petr-muller]

😅 I'm just roleplaying a web developer here, it is possible that I'm wrong :D

[vovakrk]

/assign @petr-muller

[vovakrk]

Hi @petr-muller, Could you take a look at my PR? Thank you!

[petr-muller]

Thanks for the contribution! I thought about having a Markdown lens in the past, I believe it can be very useful.

Some high-level notes:

1. Should it just be called markdown lens instead of "summary"?
2. I'm no expert on Markdown Go libraries, but https://github.com/russross/blackfriday seems essentially abandoned; is there a reason why you chose it? Quick google search showed https://github.com/yuin/goldmark as an actively developed candidate but I really did not do any deeper research.
3. The logic is fairly simple but I still think we'd benefit from having basic tests. It makes it easier for folks to extend the behavior in the future.

[petr-muller]

I think it's not fine, the output is fed to template.HTML below which is documented to assume the input to be safe:

HTML encapsulates a known safe HTML document fragment. It should not be used for HTML from a third-party

I guess we could use it this way if the markdown processor is trusted to emit safe HTML from potentially unsafe markdown, but the blackfriday one does not seem to do that at least by default:

Blackfriday itself does nothing to protect against malicious content. If you are dealing with user-supplied markdown, we recommend running Blackfriday's output through HTML sanitizer such as Bluemonday.

[petr-muller]

Suggested change

	logrus.WithError(err).Error("Error executing template.")
	logrus.WithError(err).Error("Failed to load template.")

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: michelle192837, vovakrk
Once this PR has been reviewed and has the lgtm label, please ask for approval from petr-muller. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment