On 2016-05-13 22:28, Jon Robson wrote:
The ResourceLoaderImage module is being used widely to generate SVG icons with png fallbacks. I'd be interested in seeing if we can use this in some way for optimising SVGs and removing meta data.
I don't know what you have in mind, but please remember that ResourceLoaderImage was not written with security in mind. It has a very simplified version of our usual SVG rendering code, and it assumes that any SVG files passed to it is trusted. We traded some caution for some performance. Giving it user-controlled data is going to result in security vulnerabilities (at the very least some denial of service ones).