Closed andreeleuterio closed 4 years ago
fix: fixing injection vulnerabilities in render
fix: removed style attribute support on img elements
fix: added validation of iframe url hostnames
fix: fixed fixture to use urls that are parseable by url.parse
fix: removed brittle regex and added literal string matching for hostnames
fix: removed node 6 support
fix: added fixture for style attribute removal
fix: added test for style attribute removal from img elements
n/a
fix: fixing injection vulnerabilities in render
fix: removed style attribute support on img elements
fix: added validation of iframe url hostnames
fix: fixed fixture to use urls that are parseable by url.parse
fix: removed brittle regex and added literal string matching for hostnames
fix: removed node 6 support
fix: added fixture for style attribute removal
fix: added test for style attribute removal from img elements
What / Why
References