From 26b25a6cb60969c766809a222d7102b8fbe922ba Mon Sep 17 00:00:00 2001
From: Skyler Grey <minion@clicks.codes>
Date: Fri, 17 May 2024 00:03:55 +0000
Subject: [PATCH] feat: Add astro config

We're basing this off the https://docs.astro.build/en/guides/markdown-content/#markdown-plugins
section of the astro docs, as well as some other remark information. We
have disabled XSS protection early in the rendering pipeline due to a
later sanitization step. This is mentioned on the remark docs and we have
tested it with some basic XSS examples
---
 astro.config.mjs | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 astro.config.mjs

diff --git a/astro.config.mjs b/astro.config.mjs
new file mode 100644
index 0000000..1fa06c2
--- /dev/null
+++ b/astro.config.mjs
@@ -0,0 +1,25 @@
+import { defineConfig } from 'astro/config';
+
+import rehypeSanitize from 'rehype-sanitize';
+import rehypeStringify from 'rehype-stringify';
+import rehypeRaw from 'rehype-raw';
+import remarkParse from 'remark-parse';
+import remarkRehype from 'remark-rehype';
+
+// https://astro.build/config
+export default defineConfig({
+    markdown: {
+        remarkRehype: {
+            allowDangerousHtml: true
+            // This is fine because we are using rehypeSanitize to sanitize XSS.
+            // See https://github.com/remarkjs/remark-rehype?tab=readme-ov-file#example-supporting-html-in-markdown-properly
+        },
+        remarkPlugins: [
+            remarkParse,
+            remarkRehype,
+            rehypeRaw,
+            rehypeSanitize,
+            rehypeStringify,
+        ]
+    }
+});