scl/szurubooru
1
0
Fork 0
mirror of https://github.com/rr-/szurubooru.git synced 2025-07-17 08:26:24 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,239 Commits 4 Branches 22 Tags
bc7a4cf8c514d5d06605f05dc10aafc0b1123752
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Eva bc7a4cf8c5 client/markdown: prevent arbitrary tags 
Introduced in 0137cf383a, anywhere that
allows markdown e.g. comments allowed any arbitrary tag that wasn't
explicitly banned by DOMPurify, since it cannot know whether it came
from our Markdown renderer or from the user.
People could add arbitrary <style> tags that mess with the page,
<button>s etc. It did not lead to XSS since DOMPurify strips it,
but still unacceptable.
escapeHtml is identical to the old behavior of marked.js sanitize=true
2025-04-04 06:58:24 +02:00
.github/workflows
client+server: only trigger autobuild on master branch pushes
2022-03-31 18:54:08 -04:00
client
client/markdown: prevent arbitrary tags
2025-04-04 06:58:24 +02:00
doc
chore: questionable is not a recognized rating
2025-02-11 21:50:27 +01:00
server
server/config: generalize container support
2024-11-10 15:44:39 +01:00
.gitattributes
all: add .gitattributes
2022-05-02 13:04:07 +02:00
.gitignore
all: updated gitignore
2020-03-06 10:29:03 -05:00
.pre-commit-config.yaml
server+client: bump versions in pre-commit
2023-04-17 10:31:35 -04:00
docker-compose.yml
doc: use docker compose instead of docker-compose
2025-02-11 21:25:10 +01:00
LICENSE.md
docs/license: add license
2016-09-08 18:09:24 +02:00
README.md
doc: update for yt-dlp
2023-08-17 20:58:09 +08:00

README.md

szurubooru

Szurubooru is an image board engine inspired by services such as Danbooru, Gelbooru and Moebooru dedicated for small and medium communities. Its name has its roots in Polish language and has onomatopeic meaning of scraping or scrubbing. It is pronounced as shoorubooru.

Features

  • Post content: images (JPG, PNG, GIF, animated GIF), videos (MP4, WEBM), Flash animations
  • Ability to retrieve web video content using yt-dlp
  • Post comments
  • Post notes / annotations, including arbitrary polygons
  • Rich JSON REST API (see documentation)
  • Token based authentication for clients
  • Rich search system
  • Rich privilege system
  • Autocomplete in search and while editing tags
  • Tag categories
  • Tag suggestions
  • Tag implications (adding a tag automatically adds another)
  • Tag aliases
  • Pools and pool categories
  • Duplicate detection
  • Post rating and favoriting; comment rating
  • Polished UI
  • Browser configurable endless paging
  • Browser configurable backdrop grid for transparent images

Installation

It is recommended that you use Docker for deployment. See installation instructions.

More installation resources, as well as related projects can be found on the GitHub project Wiki

Screenshots

Post list:

20160908_180032_fsk

Post view:

20160908_180429_lmp

License

GPLv3.

Description
Szurubooru is an image board engine inspired by services such as Danbooru, Gelbooru and Moebooru dedicated for small and medium communities. Its name has its roots in Polish language and has onomatopeic meaning of scraping or scrubbing. It is pronounced as shoorubooru.
danboorues6image-board-enginepython
Readme 18 MiB
Languages
Python 52.1%
JavaScript 33.9%
Smarty 8.2%
Stylus 5.2%
Dockerfile 0.3%
Other 0.2%