issues
search
cure53
/
DOMPurify
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
https://cure53.de/purify
Other
14.12k
stars
733
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Fix #1033
#1037
svdb99
opened
1 day ago
0
Add triple-slash types reference to trusted-types.
#1036
reduckted
closed
1 day ago
1
Compile of Angular app not possible since update to v3.2.x
#1035
heinerlamprecht
closed
1 day ago
12
export 'sanitize' (imported as 'sanitize') was not found in 'dompurify' (possible exports: default)
#1034
ngtrthinh169TPC
closed
3 days ago
6
Small syntax enhancement to TMPLIT_EXPR
#1033
svdb99
opened
6 days ago
4
2.x
#1032
cure53
closed
1 week ago
0
Changed the type of the "node" in hooks to be as specific as possible
#1031
reduckted
closed
5 days ago
1
Getting 3.x branch ready for 3.2.1 release
#1030
cure53
closed
1 week ago
0
Incorrect type for addHook callback currentNode argument
#1029
benjdevries
closed
1 week ago
8
fix: mark createDOMPurify param as optional
#1028
MiniDigger
closed
1 week ago
0
Endless loop of `DOMParser.parseFromString` when used with Trusted Types polyfill
#1027
orazioedoardo
closed
1 week ago
4
[feature] request: add `isDirty()` or similar method to determine code cleanliness
#1026
tonypapousek
closed
1 week ago
3
Move @types/trusted-types to optionalDependencies
#1025
asamuzaK
closed
1 week ago
1
Ensured that purify.min.js is actually minified.
#1024
reduckted
closed
1 week ago
1
Moved the "import" exports to be first
#1023
reduckted
closed
1 week ago
1
fix: ignore export assign cannot be used in module TS error, fixes #1018
#1022
ghiscoding
closed
1 week ago
3
Export DOMPurify interface
#1021
asamuzaK
closed
1 week ago
2
`type DOMPurify` is not exported
#1020
asamuzaK
closed
1 week ago
2
Update CUSTOM_ELEMENT regexp to support custom elements with colon into the tag.
#1019
ciccio-90
closed
2 weeks ago
7
3.2.0 seems to cause a build error in Angular/React: An export assignment cannot be used in a module with other exported elements.
#1018
ghiscoding
closed
1 week ago
19
3.x
#1016
cure53
closed
2 weeks ago
0
Getting 3.x branch ready for 3.2.0 release
#1015
cure53
closed
2 weeks ago
0
imp: improved types and utils
#1014
ssi02014
closed
2 weeks ago
5
nextjs SSR error
#1013
shehza-d
closed
3 weeks ago
2
how to keep (sub)strong tags included in a deleted(unwanted) span tag ?
#1012
fabGutin
closed
3 weeks ago
1
Maintaining the order of the attributes in sanitized html.
#1011
parveshgoyal01
closed
3 weeks ago
1
The order of the attributes is not maintained, so there is no way to check and say that content is valid as per DOMPurify.
#1010
parveshgoyal01
closed
3 weeks ago
1
errors when imported via requirejs/define
#1009
kevindoyleie
closed
1 month ago
1
fix(types): export `Config` type from package
#1008
aloisklink
closed
1 month ago
1
Issue regarding sanitization behavior
#1007
DeepakGoyalDev
closed
1 month ago
3
Add Type Declarations
#1006
reduckted
closed
1 month ago
1
`Illegal invocation` thrown when removing/replacing comment node in hook
#1005
mjbvz
closed
1 month ago
6
build(deps): bump cookie and socket.io
#1004
dependabot[bot]
closed
1 month ago
0
[bug] Version 3.1.7 build error for Angular (likely other projects)
#1003
philmayfield
closed
1 month ago
31
DOMPurify 3.1.7 breaks Mermaid diagrams using `foreignObject`
#1002
slorber
closed
2 months ago
9
3.x
#1001
cure53
closed
2 months ago
0
2.x
#1000
cure53
closed
2 months ago
0
Getting 3.x branch ready for 3.1.7 release 2/2
#999
cure53
closed
2 months ago
0
Getting 3.x branch ready for 3.1.7 release
#998
cure53
closed
2 months ago
0
build(deps-dev): bump rollup from 2.70.1 to 3.29.5
#997
dependabot[bot]
closed
2 months ago
1
¶ gets transformed to ¶
#995
kaelig
closed
2 months ago
9
DOMpurify allows tampering by prototype pollution
#994
Codename-404
closed
2 months ago
1
build(deps): bump body-parser from 1.20.1 to 1.20.3
#993
dependabot[bot]
closed
2 months ago
0
XML code is removed
#992
BekaArabidze98
closed
2 months ago
4
The DOMPurify.removed does not work as expected
#991
Asish-Work
closed
2 months ago
1
Added support for the Angular compiler.
#990
jeroen1602
closed
2 months ago
2
build(deps-dev): bump webpack from 5.76.1 to 5.94.0
#989
dependabot[bot]
closed
2 months ago
0
DOMPurify.removed isn't reporting inline scripts with arbitrary text afterwards
#988
Bengejd
closed
3 months ago
1
Allow SVG transfer function attributes
#987
Gigabyte5671
closed
3 months ago
1
DOMPurify.sanitize() leaves executable code
#986
pdelancie
closed
3 months ago
13
Next