Open bpierre opened 4 years ago
One fix for this is to forbid the img
tag when sanitizing dom.
https://github.com/pastelsky/bundlephobia/blob/bundlephobia/client/components/QuickStatsBar/QuickStatsBar.js#L35 in the above line we could do this.
return DOMPurify.sanitize(trimmed, { FORBID_TAGS: ['img']})
what do you think of this solution @pastelsky
@aviskarkc10 sounds good. Do you want to take a stab?
yeah sure.
See:
PS: thanks for having built this super valuable tool! :hugs: