@Ben Warzeski (Deactivated) | TextEditor update There are some complicated nuances here that will require extra effort/scope to bring this into Paragon due to TinyMCE implementation. [question] What are the security risk of certain things like TinyMCE? Notably, for the end user (e.g., injecting an alert) In collaboration with Security Working Group E.g., stripping <script> tags
May not be a UI component per se, but more so a higher level component
More generally, where are the security holes in our Paragon component library? At least for the short term, we should add a drag-n-drop component for designers in Figma (@Gabriel Weinberg)
|
@Gabriel Weinberg
| Let’s zoom out on Paragon… where did we come from, and where are we going? Does any of the work we’re doing help support business goals like LTV, etc.? Organisms components Paragon is a design system for “learning applications” @Gabriel Weinberg put together a few slides to document where we are, and where we could go, document common some pain points, Ideally, we can also jam with stickies session on this list. Fears/Concerns Opportunities Things we’d like to see
Evangelize more frontend devs across the org.
|