Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / cure53/DOMPurify issues and pull requests
#1002 - DOMPurify 3.1.7 breaks Mermaid diagrams using `foreignObject`
Issue -
State: closed - Opened by slorber 2 days ago
- 2 comments
#1001 - 3.x
Pull Request -
State: closed - Opened by cure53 3 days ago
#1000 - 2.x
Pull Request -
State: closed - Opened by cure53 3 days ago
#999 - Getting 3.x branch ready for 3.1.7 release 2/2
Pull Request -
State: closed - Opened by cure53 3 days ago
#998 - Getting 3.x branch ready for 3.1.7 release
Pull Request -
State: closed - Opened by cure53 3 days ago
#997 - build(deps-dev): bump rollup from 2.70.1 to 3.29.5
Pull Request -
State: closed - Opened by dependabot[bot] 5 days ago
- 1 comment
Labels: dependencies, javascript
#995 - ¶ gets transformed to ¶
Issue -
State: closed - Opened by kaelig 10 days ago
- 9 comments
#994 - DOMpurify allows tampering by prototype pollution
Issue -
State: closed - Opened by Codename-404 13 days ago
- 1 comment
#993 - build(deps): bump body-parser from 1.20.1 to 1.20.3
Pull Request -
State: closed - Opened by dependabot[bot] 13 days ago
Labels: dependencies, javascript
#992 - XML code is removed
Issue -
State: closed - Opened by BekaArabidze98 16 days ago
- 4 comments
#991 - The DOMPurify.removed does not work as expected
Issue -
State: closed - Opened by Asish-Work 20 days ago
- 1 comment
#990 - Added support for the Angular compiler.
Pull Request -
State: closed - Opened by jeroen1602 26 days ago
- 2 comments
#988 - DOMPurify.removed isn't reporting inline scripts with arbitrary text afterwards
Issue -
State: closed - Opened by Bengejd about 1 month ago
- 1 comment
#987 - Allow SVG transfer function attributes
Pull Request -
State: closed - Opened by Gigabyte5671 about 1 month ago
- 1 comment
#986 - DOMPurify.sanitize() leaves executable code
Issue -
State: closed - Opened by pdelancie about 1 month ago
- 13 comments
#985 - [bug] DomPurify hangs on indefinitely when using SAFE_FOR_TEMPLATES=true
Issue -
State: closed - Opened by vicpara about 2 months ago
- 3 comments
#984 - Incorrect remove of `feFunc*` attr
Issue -
State: closed - Opened by RichardLuo0 about 2 months ago
#983 - fix: typo in karma.custom-launchers.config.js
Pull Request -
State: closed - Opened by christianhg 3 months ago
- 1 comment
#982 - DOM Purify Allows onfocus events
Issue -
State: closed - Opened by agonvuniqi 3 months ago
- 1 comment
#980 - name='lang' Attribute Removed During Sanitization
Issue -
State: closed - Opened by nitiponth 3 months ago
- 1 comment
#979 - Policy creator
Issue -
State: closed - Opened by jmanico 3 months ago
- 2 comments
#978 - Getting 3.x branch ready for 3.1.6 release
Pull Request -
State: closed - Opened by cure53 3 months ago
#977 - build(deps): bump ws and socket.io-adapter
Pull Request -
State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript
#976 - MathML Content Markup Removed
Issue -
State: closed - Opened by HaluanUskoa 3 months ago
- 2 comments
#975 - build(deps): bump ws and socket.io
Pull Request -
State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript
#974 - feat(website): add lang attribute to declare language
Pull Request -
State: closed - Opened by Rotzbua 3 months ago
- 1 comment
#973 - fix(typo): found by `codespell`
Pull Request -
State: closed - Opened by Rotzbua 3 months ago
- 1 comment
#972 - feat(docs): add removed options
Pull Request -
State: closed - Opened by Rotzbua 3 months ago
- 1 comment
#971 - <img> xss vulnerability
Issue -
State: closed - Opened by Koleneko 3 months ago
#970 - build(deps): bump braces from 3.0.2 to 3.0.3
Pull Request -
State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript
#969 - KEEP_CONTENT remove contents of all ALLOWED_TAGS
Issue -
State: closed - Opened by Firioesa 4 months ago
- 2 comments
#968 - Issue secure [email protected] Apache-2.0 + Fair + MPL-2.0
Issue -
State: closed - Opened by hero-oceansmart 4 months ago
- 1 comment
#967 - A code comment containing a tag name structure leads to removal of the entire block
Issue -
State: closed - Opened by ArtemAvseenko 4 months ago
- 2 comments
#966 - The MAX_NESTING_DEPTH remove contents issue has not been resolved.
Issue -
State: closed - Opened by kakao-bishop-cho 4 months ago
- 3 comments
#965 - Escape unsafe characters instead of removing them
Issue -
State: closed - Opened by FlawTECH 4 months ago
- 3 comments
#964 - Getting 3.x branch ready for 3.1.5 release
Pull Request -
State: closed - Opened by cure53 4 months ago
#963 - MAX_NESTING_DEPTH remove contents issue
Issue -
State: closed - Opened by kakao-bishop-cho 4 months ago
- 5 comments
#962 - HTML and BODY tags are being regardless of `ALLOWED_TAGS` settings
Issue -
State: closed - Opened by secret-agent-B 4 months ago
- 2 comments
#961 - Bower issues : DOMPurify is not defined
Issue -
State: closed - Opened by HakumenNC 4 months ago
- 5 comments
#960 - Getting 3.x branch ready for 3.1.4 release
Pull Request -
State: closed - Opened by cure53 4 months ago
#959 - Pul
Pull Request -
State: closed - Opened by snmb22 4 months ago
#958 - Number.isNaN is not supported in MSIE
Issue -
State: closed - Opened by tulach 4 months ago
- 15 comments
#957 - Allow Popover API attributes
Pull Request -
State: closed - Opened by Gigabyte5671 4 months ago
- 1 comment
#956 - Documentation
Pull Request -
State: closed - Opened by MortenHofft 5 months ago
- 1 comment
#955 - release 3.1.3 assets are the same as 3.1.2
Issue -
State: closed - Opened by joebordes 5 months ago
- 1 comment
#954 - Latest versions of DOMPurify 2.5.x block custom SVG elements when they are set via ADD_TAGS config.
Issue -
State: closed - Opened by kevinroast 5 months ago
- 6 comments
#953 - Exception when passing 0 or "" or null to Dompurify.Sanitize Method #947
Issue -
State: closed - Opened by sgudishettys 5 months ago
- 3 comments
#952 - Why does name="name" on an input field get purified?
Issue -
State: closed - Opened by halfmoonui 5 months ago
- 1 comment
#951 - Need to block external calls, e.g. all HTTP requests
Issue -
State: closed - Opened by benbucksch 5 months ago
- 7 comments
#950 - Uncertain how to handle 'non-standard' HTML
Issue -
State: closed - Opened by spaceemotion 5 months ago
- 3 comments
#949 - Use lower case for bower package name
Issue -
State: closed - Opened by ZheSun88 5 months ago
- 1 comment
#948 - refac: refactoring nodeType by adding a NODE_TYPE object
Pull Request -
State: closed - Opened by ssi02014 5 months ago
- 3 comments
#947 - Exception when passing 0 or "" or null to Dompurify.Sanitize Method
Issue -
State: closed - Opened by sgudishettys 5 months ago
- 2 comments
#946 - when using bypasssecurityTrustHtml mthod to render template
Issue -
State: closed - Opened by Mani9398 5 months ago
- 3 comments
#945 - Getting 3.x branch ready for 3.1.2 release
Pull Request -
State: closed - Opened by cure53 5 months ago
#944 - Getting 3.x branch ready for 3.1.1 release
Pull Request -
State: closed - Opened by cure53 5 months ago
#943 - Merging fixes covering nesting-based mXSS into 3.x branch
Pull Request -
State: closed - Opened by cure53 5 months ago
#942 - docs(README.md): correct hook name in example and remove misleading comment
Pull Request -
State: closed - Opened by kyselberg 5 months ago
- 1 comment
#941 - fix: added __removalCount to account for nodes removed from parents w…
Pull Request -
State: closed - Opened by icesfont 5 months ago
#940 - fix: added __removalCount to account for nodes removed from parents w…
Pull Request -
State: closed - Opened by icesfont 5 months ago
#939 - DOMPurify and Trusted Types - Clarification to Docs
Issue -
State: closed - Opened by cancan101 6 months ago
- 9 comments
#938 - Sanitize returns empty string when PARSER_MEDIA_TYPE: application/xhtml+xml and void tags
Issue -
State: closed - Opened by lucamerighi 6 months ago
- 4 comments
#937 - How do I use the API provided by DomPurify to verify the SVG file is it risky?
Issue -
State: closed - Opened by yfools 6 months ago
- 1 comment
#936 - docs: Updated the year in LICENSE file
Pull Request -
State: closed - Opened by cure53 6 months ago
#935 - New release v3.1.0 (not in releases)
Issue -
State: closed - Opened by johnbirds 6 months ago
- 1 comment
#934 - Getting 3.x branch ready for 3.1.0 release
Pull Request -
State: closed - Opened by cure53 6 months ago
#933 - Sanitization Issue with DomPurify
Issue -
State: closed - Opened by tommy888883 6 months ago
- 3 comments
#932 - Sanitization Issue: Comments Removed Despite ADD_TAGS Configuration
Issue -
State: closed - Opened by agnijalam 6 months ago
- 8 comments
#931 - Fix for bug in demo hooks-sanitize-css-demo.html
Issue -
State: closed - Opened by koosvanderkolk 6 months ago
- 3 comments
#930 - Title: Sanitization removes valid iframe attributes and changes attribute order
Issue -
State: closed - Opened by Mani9398 6 months ago
- 8 comments
#929 - n
Issue -
State: closed - Opened by ManikantaPhenom 6 months ago
#928 - Question regarding DOMPurify ADD_TAGS is not allowing <script> tag
Issue -
State: closed - Opened by yam4office 6 months ago
- 7 comments
#927 - Question about using DOMPurify for a tricky usecase.
Issue -
State: closed - Opened by yam4office 6 months ago
- 8 comments
#926 - Update attrs.js
Pull Request -
State: closed - Opened by HaluanUskoa 6 months ago
#925 - Removal of <textarea> `wrap` attribute
Issue -
State: closed - Opened by HaluanUskoa 6 months ago
- 3 comments
#924 - Release assets bug 3.0.11
Issue -
State: closed - Opened by johnbirds 6 months ago
- 1 comment
#923 - 3.x
Pull Request -
State: closed - Opened by cure53 6 months ago
#922 - 2.x
Pull Request -
State: closed - Opened by cure53 6 months ago
#921 - Getting 3.x branch ready for 3.0.11 release
Pull Request -
State: closed - Opened by cure53 6 months ago
#920 - [bug] Breaking changes with tag matching (_isBasicCustomElement) in 3.0.10
Issue -
State: closed - Opened by AlekseySolovey3T 6 months ago
- 3 comments
#919 - 3.x
Pull Request -
State: closed - Opened by cure53 6 months ago
#918 - 2.x
Pull Request -
State: closed - Opened by cure53 6 months ago
#917 - Getting 3.x branch ready for 3.0.10 release
Pull Request -
State: closed - Opened by cure53 6 months ago
#916 - Questions about what exactly is in the default configuration?
Issue -
State: closed - Opened by VentuzVictorPerez 7 months ago
- 1 comment
#915 - build(deps-dev): bump follow-redirects from 1.15.4 to 1.15.6
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, javascript
#914 - Enhancement: Automatic Isolation of Hook Contexts in DOMPurify to Prevent State Leakage Between Sanitizations
Issue -
State: closed - Opened by DrBronsy 7 months ago
- 2 comments
#913 - Getting 3.x branch ready for 3.0.9 release
Pull Request -
State: closed - Opened by cure53 7 months ago
#912 - +1 (786) 263-2714
Issue -
State: closed - Opened by Dalian991 7 months ago
#911 - Potential for XSS exploit through data uri
Issue -
State: closed - Opened by leopiel 8 months ago
- 7 comments
#910 - fix: Change the "in" operator to hasOwnProperty
Pull Request -
State: closed - Opened by ssi02014 8 months ago
- 1 comment
#909 - [bag] - build error in react app
Issue -
State: closed - Opened by Advicel 8 months ago
#908 - fix(utils): Fixed getOwnPropertyDescriptor to hasOwnProperty function
Pull Request -
State: closed - Opened by ssi02014 8 months ago
- 1 comment
#907 - Feature branch
Pull Request -
State: closed - Opened by danishdazer 8 months ago
#906 - Meta/Header Data Strips
Issue -
State: closed - Opened by sgtcoder 8 months ago
- 2 comments
#905 - Question about sanitizing HTML content with WHOLE_DOCUMENT option
Issue -
State: closed - Opened by agnijalam 8 months ago
- 3 comments
#904 - Making changes for Assignment
Pull Request -
State: closed - Opened by danishdazer 8 months ago
- 1 comment
#903 - console warn fallback for <b> when run with Happydom
Pull Request -
State: closed - Opened by HugoPoi 9 months ago
- 8 comments
#902 - Question about Sanitize Css Hook example
Issue -
State: closed - Opened by Ste35 9 months ago
- 5 comments
#901 - build(deps-dev): bump follow-redirects from 1.14.8 to 1.15.4
Pull Request -
State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, javascript
#900 - Error thrown with `style` tag in `svg`
Issue -
State: closed - Opened by timonmasberg 9 months ago
- 8 comments