paulmataruso/zulip-desktop
1
0
Fork 0
mirror of https://github.com/zulip/zulip-desktop.git synced 2025-10-23 16:13:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
e03de261371bb25432a404d3fb37a3723b6f9ad8
zulip-desktop/app/renderer/js/shared/preventdrag.ts
Anders Kaseorg d3bcd7306a typescript: Switch to ES import/export syntax. 
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
2020-03-04 17:21:03 -08:00

18 lines
512 B
TypeScript
Raw Blame History

// This is a security fix. Following function prevents drag and drop event in the app
// so that attackers can't execute any remote code within the app
// It doesn't affect the compose box so that users can still
// use drag and drop event to share files etc
const preventDragAndDrop = (): void => {
const preventEvents = ['dragover', 'drop'];
preventEvents.forEach(dragEvents => {
document.addEventListener(dragEvents, event => {
event.preventDefault();
});
});
};
preventDragAndDrop();
export {};
Reference in New Issue View Git Blame Copy Permalink