issues
search
cure53
/
DOMPurify
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
https://cure53.de/purify
Other
13.67k
stars
698
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
DOMPurify adjusts HTML option to deactivate
#838
Antonio225t
closed
1 year ago
2
AMP Support?
#837
iamjamielobo
closed
1 year ago
1
DOMPurify deleting H1, H2, P, and other tags
#836
Antonio225t
closed
1 year ago
1
Preparing 3.0.5 release
#835
cure53
closed
1 year ago
0
DOMPurify 2.4.6 not published on npm
#834
0xbb
closed
1 year ago
6
build(deps): bump tough-cookie from 4.0.0 to 4.1.3
#833
dependabot[bot]
closed
1 year ago
0
Apache license requires including full text of Apache license.
#832
george-thomas-hill
closed
1 year ago
3
Error "DOMPurify.sanitize is not a function" in an Angular 16 application
#831
andreidiaconescu
closed
1 year ago
4
Differences in Browser Behavior(Chrome vs. Firefox)
#830
JoeColmado
closed
1 year ago
3
2.x
#829
cure53
closed
1 year ago
0
Get main branch to be up to date again
#828
cure53
closed
1 year ago
0
Final merge before 3.0.4 release
#827
cure53
closed
1 year ago
0
Final merge before new release 3.0.4
#826
cure53
closed
1 year ago
0
Merge main into 3.x
#825
cure53
closed
1 year ago
0
sanitize is not a function on SSR
#824
JirkaBures
closed
1 year ago
2
In react DOMPurify not working on initial load, working only after refresh
#823
irfankhan501
closed
1 year ago
2
Json value missed up while using Dompurify
#822
AnjuDevkota
closed
1 year ago
3
How to sanitize api response server side?
#821
grantspilsbury
closed
1 year ago
2
[Question] How to avoid strings being lost by <> commas
#820
zouyifeng
closed
1 year ago
3
Outlook VML statements become commented
#819
markb-trustifi
closed
1 year ago
3
When passing html entities along with html tags, the html entities are converted into specific characters.
#818
o251298
closed
1 year ago
2
Create DOMPurify
#817
Solomonus
closed
1 year ago
1
Cannot prevent automatic conversion of phone numbers to <a links with tel: href
#816
myufa
closed
1 year ago
6
Fixed a typo in shadowrootmode attribute
#815
masatokinugawa
closed
1 year ago
1
[QUESTION] "<" and ">" valid on it's own
#814
fullyonline
closed
1 year ago
1
DOMPurify.sanitize() cannot access object before initialization
#813
zima702
closed
1 year ago
1
DOMPurify 2.4.5 and whtmltopdf 0.12.6
#812
francoisjacquet
closed
1 year ago
2
[QUESTION] How to Remove `a` tag which doesn't have `href` attribute, but keep the content
#811
renomureza
closed
1 year ago
1
Update README.md with ECMA 6 module import example
#810
HimanshuBari21
closed
1 year ago
1
build(deps): bump socket.io-parser from 4.2.1 to 4.2.3
#809
dependabot[bot]
closed
1 year ago
0
[QUESTION] How to sanitize style tags and attributes
#808
JeremyBradshaw7
closed
1 year ago
1
The template tags {{}} are moved out of <table>
#807
cwang1221
closed
1 year ago
1
[QUESTION] How to use in a React Native project?
#806
JeremyBradshaw7
closed
1 year ago
2
Merge main into 3.x
#805
cure53
closed
1 year ago
0
DOMPurify removes allowed <style> tag when it's not preceded by other elements.
#804
noisehunter82
closed
1 year ago
1
build(deps): bump engine.io and socket.io
#803
dependabot[bot]
closed
1 year ago
0
SonarQube - Vulnerability Critical issue raised in purify.js
#802
gauravoza1710
closed
1 year ago
1
create internal trustedTypes policy only if not specified via config object
#801
dejang
closed
1 year ago
2
support TRUSTED_TYPES_POLICY configuration option
#800
dejang
closed
1 year ago
1
DOM Purify fix still pops up as vulnerability in Fortify XSS Scans
#799
sajanyamaha
closed
1 year ago
1
Support configurable TrustedTypes policy
#798
dejang
closed
1 year ago
10
Outlook css <!--[if mso | IE]> is getting removed by dompurify
#797
ThayaNanthini
closed
1 year ago
2
[Feature/Bug] Improve <animate> sanitisation
#796
SelfMadeSystem
closed
1 year ago
2
Moved feDropShadow to the svg filter allowlist
#795
SelfMadeSystem
closed
1 year ago
1
build(deps): bump yaml and xo
#794
dependabot[bot]
closed
1 year ago
0
chore: updated website version info
#793
cure53
closed
1 year ago
0
Finalize 3.0.2 release preparations
#792
cure53
closed
1 year ago
0
Merged main into 3.x for upcoming release
#791
cure53
closed
1 year ago
0
fix: ensure ALLOWED_URI_REGEXP is reset
#790
mukilane
closed
1 year ago
4
don't delete text inside quotes
#789
lemonspb
closed
1 year ago
1
Previous
Next