Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / cure53/DOMPurify issues and pull requests

#1002 - DOMPurify 3.1.7 breaks Mermaid diagrams using `foreignObject`

Issue - State: closed - Opened by slorber 2 days ago - 2 comments

#1001 - 3.x

Pull Request - State: closed - Opened by cure53 3 days ago

#1000 - 2.x

Pull Request - State: closed - Opened by cure53 3 days ago

#999 - Getting 3.x branch ready for 3.1.7 release 2/2

Pull Request - State: closed - Opened by cure53 3 days ago

#998 - Getting 3.x branch ready for 3.1.7 release

Pull Request - State: closed - Opened by cure53 3 days ago

#997 - build(deps-dev): bump rollup from 2.70.1 to 3.29.5

Pull Request - State: closed - Opened by dependabot[bot] 5 days ago - 1 comment
Labels: dependencies, javascript

#995 - &para gets transformed to ¶

Issue - State: closed - Opened by kaelig 10 days ago - 9 comments

#994 - DOMpurify allows tampering by prototype pollution

Issue - State: closed - Opened by Codename-404 13 days ago - 1 comment

#993 - build(deps): bump body-parser from 1.20.1 to 1.20.3

Pull Request - State: closed - Opened by dependabot[bot] 13 days ago
Labels: dependencies, javascript

#992 - XML code is removed

Issue - State: closed - Opened by BekaArabidze98 16 days ago - 4 comments

#991 - The DOMPurify.removed does not work as expected

Issue - State: closed - Opened by Asish-Work 20 days ago - 1 comment

#990 - Added support for the Angular compiler.

Pull Request - State: closed - Opened by jeroen1602 26 days ago - 2 comments

#988 - DOMPurify.removed isn't reporting inline scripts with arbitrary text afterwards

Issue - State: closed - Opened by Bengejd about 1 month ago - 1 comment

#987 - Allow SVG transfer function attributes

Pull Request - State: closed - Opened by Gigabyte5671 about 1 month ago - 1 comment

#986 - DOMPurify.sanitize() leaves executable code

Issue - State: closed - Opened by pdelancie about 1 month ago - 13 comments

#985 - [bug] DomPurify hangs on indefinitely when using SAFE_FOR_TEMPLATES=true

Issue - State: closed - Opened by vicpara about 2 months ago - 3 comments

#984 - Incorrect remove of `feFunc*` attr

Issue - State: closed - Opened by RichardLuo0 about 2 months ago

#983 - fix: typo in karma.custom-launchers.config.js

Pull Request - State: closed - Opened by christianhg 3 months ago - 1 comment

#982 - DOM Purify Allows onfocus events

Issue - State: closed - Opened by agonvuniqi 3 months ago - 1 comment

#980 - name='lang' Attribute Removed During Sanitization

Issue - State: closed - Opened by nitiponth 3 months ago - 1 comment

#979 - Policy creator

Issue - State: closed - Opened by jmanico 3 months ago - 2 comments

#978 - Getting 3.x branch ready for 3.1.6 release

Pull Request - State: closed - Opened by cure53 3 months ago

#977 - build(deps): bump ws and socket.io-adapter

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#976 - MathML Content Markup Removed

Issue - State: closed - Opened by HaluanUskoa 3 months ago - 2 comments

#975 - build(deps): bump ws and socket.io

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#974 - feat(website): add lang attribute to declare language

Pull Request - State: closed - Opened by Rotzbua 3 months ago - 1 comment

#973 - fix(typo): found by `codespell`

Pull Request - State: closed - Opened by Rotzbua 3 months ago - 1 comment

#972 - feat(docs): add removed options

Pull Request - State: closed - Opened by Rotzbua 3 months ago - 1 comment

#971 - <img> xss vulnerability

Issue - State: closed - Opened by Koleneko 3 months ago

#970 - build(deps): bump braces from 3.0.2 to 3.0.3

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#969 - KEEP_CONTENT remove contents of all ALLOWED_TAGS

Issue - State: closed - Opened by Firioesa 4 months ago - 2 comments

#968 - Issue secure [email protected] Apache-2.0 + Fair + MPL-2.0

Issue - State: closed - Opened by hero-oceansmart 4 months ago - 1 comment

#966 - The MAX_NESTING_DEPTH remove contents issue has not been resolved.

Issue - State: closed - Opened by kakao-bishop-cho 4 months ago - 3 comments

#965 - Escape unsafe characters instead of removing them

Issue - State: closed - Opened by FlawTECH 4 months ago - 3 comments

#964 - Getting 3.x branch ready for 3.1.5 release

Pull Request - State: closed - Opened by cure53 4 months ago

#963 - MAX_NESTING_DEPTH remove contents issue

Issue - State: closed - Opened by kakao-bishop-cho 4 months ago - 5 comments

#962 - HTML and BODY tags are being regardless of `ALLOWED_TAGS` settings

Issue - State: closed - Opened by secret-agent-B 4 months ago - 2 comments

#961 - Bower issues : DOMPurify is not defined

Issue - State: closed - Opened by HakumenNC 4 months ago - 5 comments

#960 - Getting 3.x branch ready for 3.1.4 release

Pull Request - State: closed - Opened by cure53 4 months ago

#959 - Pul

Pull Request - State: closed - Opened by snmb22 4 months ago

#958 - Number.isNaN is not supported in MSIE

Issue - State: closed - Opened by tulach 4 months ago - 15 comments

#957 - Allow Popover API attributes

Pull Request - State: closed - Opened by Gigabyte5671 4 months ago - 1 comment

#956 - Documentation

Pull Request - State: closed - Opened by MortenHofft 5 months ago - 1 comment

#955 - release 3.1.3 assets are the same as 3.1.2

Issue - State: closed - Opened by joebordes 5 months ago - 1 comment

#952 - Why does name="name" on an input field get purified?

Issue - State: closed - Opened by halfmoonui 5 months ago - 1 comment

#951 - Need to block external calls, e.g. all HTTP requests

Issue - State: closed - Opened by benbucksch 5 months ago - 7 comments

#950 - Uncertain how to handle 'non-standard' HTML

Issue - State: closed - Opened by spaceemotion 5 months ago - 3 comments

#949 - Use lower case for bower package name

Issue - State: closed - Opened by ZheSun88 5 months ago - 1 comment

#948 - refac: refactoring nodeType by adding a NODE_TYPE object

Pull Request - State: closed - Opened by ssi02014 5 months ago - 3 comments

#947 - Exception when passing 0 or "" or null to Dompurify.Sanitize Method

Issue - State: closed - Opened by sgudishettys 5 months ago - 2 comments

#946 - when using bypasssecurityTrustHtml mthod to render template

Issue - State: closed - Opened by Mani9398 5 months ago - 3 comments

#945 - Getting 3.x branch ready for 3.1.2 release

Pull Request - State: closed - Opened by cure53 5 months ago

#944 - Getting 3.x branch ready for 3.1.1 release

Pull Request - State: closed - Opened by cure53 5 months ago

#943 - Merging fixes covering nesting-based mXSS into 3.x branch

Pull Request - State: closed - Opened by cure53 5 months ago

#942 - docs(README.md): correct hook name in example and remove misleading comment

Pull Request - State: closed - Opened by kyselberg 5 months ago - 1 comment

#939 - DOMPurify and Trusted Types - Clarification to Docs

Issue - State: closed - Opened by cancan101 6 months ago - 9 comments

#936 - docs: Updated the year in LICENSE file

Pull Request - State: closed - Opened by cure53 6 months ago

#935 - New release v3.1.0 (not in releases)

Issue - State: closed - Opened by johnbirds 6 months ago - 1 comment

#934 - Getting 3.x branch ready for 3.1.0 release

Pull Request - State: closed - Opened by cure53 6 months ago

#933 - Sanitization Issue with DomPurify

Issue - State: closed - Opened by tommy888883 6 months ago - 3 comments

#932 - Sanitization Issue: Comments Removed Despite ADD_TAGS Configuration

Issue - State: closed - Opened by agnijalam 6 months ago - 8 comments

#931 - Fix for bug in demo hooks-sanitize-css-demo.html

Issue - State: closed - Opened by koosvanderkolk 6 months ago - 3 comments

#929 - n

Issue - State: closed - Opened by ManikantaPhenom 6 months ago

#928 - Question regarding DOMPurify ADD_TAGS is not allowing <script> tag

Issue - State: closed - Opened by yam4office 6 months ago - 7 comments

#927 - Question about using DOMPurify for a tricky usecase.

Issue - State: closed - Opened by yam4office 6 months ago - 8 comments

#926 - Update attrs.js

Pull Request - State: closed - Opened by HaluanUskoa 6 months ago

#925 - Removal of <textarea> `wrap` attribute

Issue - State: closed - Opened by HaluanUskoa 6 months ago - 3 comments

#924 - Release assets bug 3.0.11

Issue - State: closed - Opened by johnbirds 6 months ago - 1 comment

#923 - 3.x

Pull Request - State: closed - Opened by cure53 6 months ago

#922 - 2.x

Pull Request - State: closed - Opened by cure53 6 months ago

#921 - Getting 3.x branch ready for 3.0.11 release

Pull Request - State: closed - Opened by cure53 6 months ago

#919 - 3.x

Pull Request - State: closed - Opened by cure53 6 months ago

#918 - 2.x

Pull Request - State: closed - Opened by cure53 6 months ago

#917 - Getting 3.x branch ready for 3.0.10 release

Pull Request - State: closed - Opened by cure53 6 months ago

#916 - Questions about what exactly is in the default configuration?

Issue - State: closed - Opened by VentuzVictorPerez 7 months ago - 1 comment

#915 - build(deps-dev): bump follow-redirects from 1.15.4 to 1.15.6

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, javascript

#913 - Getting 3.x branch ready for 3.0.9 release

Pull Request - State: closed - Opened by cure53 7 months ago

#912 - +1 (786) 263-2714

Issue - State: closed - Opened by Dalian991 7 months ago

#911 - Potential for XSS exploit through data uri

Issue - State: closed - Opened by leopiel 8 months ago - 7 comments

#910 - fix: Change the "in" operator to hasOwnProperty

Pull Request - State: closed - Opened by ssi02014 8 months ago - 1 comment

#909 - [bag] - build error in react app

Issue - State: closed - Opened by Advicel 8 months ago

#908 - fix(utils): Fixed getOwnPropertyDescriptor to hasOwnProperty function

Pull Request - State: closed - Opened by ssi02014 8 months ago - 1 comment

#907 - Feature branch

Pull Request - State: closed - Opened by danishdazer 8 months ago

#906 - Meta/Header Data Strips

Issue - State: closed - Opened by sgtcoder 8 months ago - 2 comments

#905 - Question about sanitizing HTML content with WHOLE_DOCUMENT option

Issue - State: closed - Opened by agnijalam 8 months ago - 3 comments

#904 - Making changes for Assignment

Pull Request - State: closed - Opened by danishdazer 8 months ago - 1 comment

#903 - console warn fallback for <b> when run with Happydom

Pull Request - State: closed - Opened by HugoPoi 9 months ago - 8 comments

#902 - Question about Sanitize Css Hook example

Issue - State: closed - Opened by Ste35 9 months ago - 5 comments

#901 - build(deps-dev): bump follow-redirects from 1.14.8 to 1.15.4

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, javascript

#900 - Error thrown with `style` tag in `svg`

Issue - State: closed - Opened by timonmasberg 9 months ago - 8 comments