Closed MegumiKim closed 9 months ago
Thanks @Melisa-Zorraindo! As suggested @types added!
Last commit fixed a bug which enabled empty query to be sent.
Spoke with Melisa about stress test of user input sanitisation.
I have tested with some basic XXS and DOMPurify has successfully removed malicious code before being sent to the server. Nevertheless I have created a separate issue for future sprint to run some thorough vulnerability test on Molly chat.
Following changes are made in this PR: