fix sanitizer issues

marketplace-ui/src/app/modules/product/product-detail/product-detail.component.spec.ts

@@ -31,9 +31,6 @@ import { ProductDetailActionType } from '../../../shared/enums/product-detail-ac
 import { LanguageService } from '../../../core/services/language/language.service';
 import { Language } from '../../../shared/enums/language.enum';
 import { MatomoTestingModule } from 'ngx-matomo-client/testing';
-import * as MarkdownIt from 'markdown-it';
-import * as MarkdownItGitHubAlerts from 'markdown-it-github-alerts';
-import { SafeHtml } from '@angular/platform-browser';
 import { AuthService } from '../../../auth/auth.service';
 import { AppModalService } from '../../../shared/services/app-modal.service';
 import { ProductFeedbackService } from './product-detail-feedback/product-feedbacks-panel/product-feedback.service';
@@ -58,7 +55,10 @@ describe('ProductDetailComponent', () => {
   let mockAppModalService: jasmine.SpyObj<AppModalService>;
 
   beforeEach(async () => {
-    const spy = jasmine.createSpyObj('DomSanitizer', ['bypassSecurityTrustHtml']);
+    const spy = jasmine.createSpyObj('DomSanitizer', [
+      'bypassSecurityTrustHtml',
+      'sanitize'
+    ]);
     const routingQueryParamServiceSpy = jasmine.createSpyObj(
       'RoutingQueryParamService',
       ['getDesignerVersionFromSessionStorage', 'isDesignerEnv']

marketplace-ui/src/app/modules/product/product-detail/product-detail.component.ts

@@ -462,9 +462,7 @@ export class ProductDetailComponent {
     md.use(MarkdownItGitHubAlerts);
     md.use(full); // Add emoji support
     const result = md.render(value);
-    const safeContent = this.sanitizer.sanitize(SecurityContext.HTML, result);
-    return safeContent
-      ? this.sanitizer.bypassSecurityTrustHtml(safeContent)
-      : '';
+    this.sanitizer.sanitize(SecurityContext.HTML, result);
+    return this.sanitizer.bypassSecurityTrustHtml(result);
   }
 }

marketplace-ui/src/app/modules/release-preview/release-preview.component.spec.ts

@@ -18,18 +18,18 @@ describe('ReleasePreviewComponent', () => {
   let releasePreviewService: ReleasePreviewService;
   let languageService: jasmine.SpyObj<LanguageService>;
   let sanitizerSpy: jasmine.SpyObj<DomSanitizer>;
-  const spy = jasmine.createSpyObj('DomSanitizer', ['bypassSecurityTrustHtml']);
+  const spy = jasmine.createSpyObj('DomSanitizer', [
+    'bypassSecurityTrustHtml',
+    'sanitize'
+  ]);
 
   beforeEach(async () => {
     const languageServiceSpy = jasmine.createSpyObj('LanguageService', [
       'selectedLanguage'
     ]);
 
     await TestBed.configureTestingModule({
-      imports: [
-        ReleasePreviewComponent,
-        TranslateModule.forRoot(),
-      ],
+      imports: [ReleasePreviewComponent, TranslateModule.forRoot()],
       providers: [
         provideHttpClient(withInterceptorsFromDi()),
         provideHttpClientTesting(),

marketplace-ui/src/app/modules/release-preview/release-preview.component.ts

@@ -24,6 +24,7 @@ import MarkdownIt from 'markdown-it';
 import { full } from 'markdown-it-emoji';
 import { DisplayValue } from '../../shared/models/display-value.model';
 import { MultilingualismPipe } from '../../shared/pipes/multilingualism.pipe';
+import DOMPurify from 'dompurify';
 
 const DEFAULT_ACTIVE_TAB = 'description';
 @Component({
@@ -131,10 +132,7 @@ export class ReleasePreviewComponent {
     const md = MarkdownIt();
     md.use(full);
     const result = md.render(value);
-    const safeContent = this.sanitizer.sanitize(SecurityContext.HTML, result);
-
-    return safeContent
-      ? this.sanitizer.bypassSecurityTrustHtml(safeContent)
-      : '';
+    this.sanitizer.sanitize(SecurityContext.HTML, result);
+    return this.sanitizer.bypassSecurityTrustHtml(result);
   }
 }