search

dvwright / xss-mw

XssMw is an middleware designed to "auto remove XSS" from user submitted input, it’s written in Go and targets the Gin web framework.
MIT License
33 stars 12 forks source link

json array got truncated #4

Closed victorisildur closed 5 years ago

victorisildur commented 5 years ago

request body(with application/json content-type header):

{
   "corp_ids": ["id1"]
}

after xss-mw, body becomes:

{"corp_ids":]}

which is mal-formed

dvwright commented 5 years ago

Hi, thank you for reporting this, I’ll work on this next

dvwright commented 5 years ago

Hi @victorisildur this is resolved in the newest release - https://github.com/dvwright/xss-mw/releases/tag/v1.2-Beta Thanks!