(markdown-ui.com)

193 points yaoke259 | 1 comments | 26 Aug 25 10:13 UTC | HN request time: 0.203s | source

Show context

onion2k ◴[26 Aug 25 11:28 UTC] No.45025077[source]▶

>>45024532 (OP) #

This already exists in a mature state - https://mdxjs.com/

replies(1): >>45025111 #

alfonsodev ◴[26 Aug 25 11:34 UTC] No.45025111[source]▶

>>45025077 #

To me it has nothing to do with mdxjs.

Check it twice, what the submission implements is writing all the UI in markdown, not mixing markdown with React.

Perhaps I don't know mdxjs enough but that's my impression.

replies(2): >>45025179 #>>45025357 #

yaoke259 ◴[26 Aug 25 12:02 UTC] No.45025357[source]▶

>>45025111 #

the reason I made it is that mdxjs (afaik) only works with a build step and locks the user into React, and you are still technically running code sent by the LLM, rather than a more secure static JSON like object.

replies(2): >>45025439 #>>45029320 #

1. etler ◴[26 Aug 25 17:02 UTC] No.45029320[source]▶

>>45025357 #

No and yes.

MDX parses JSX so it's compatible with any JSX runtime, not just react.

You're right that MDX executes arbitrary code because it supports the `import` and string interpolation of MDX and performs unsafe evals.

Because those evals aren't safe to use at runtime, I actually created a library that uses the MDX parser to support the static subset of JSX (which is very similar to HTML making it static and secure): https://www.npmjs.com/package/react-markdown-with-mdx

↑

Show HN: Turn Markdown into React/Svelte/Vue UI at runtime, zero build step