UNPKG

xss/CHANGELOG.md

Version:

1.8 kBMarkdownView Raw

1# CHANGELOG
2
3## v1.0.13 (2022-06-07)
4
5- [revert: fix: comment has encoded](https://github.com/leizongmin/js-xss/pull/257)
6
7## v1.0.12 (2022-06-04)
8
9- [feat: add eslint:recommended check](https://github.com/leizongmin/js-xss/pull/252) by @lumburr
10- [fix: comment has encoded](https://github.com/leizongmin/js-xss/pull/257) by @lumburr
11- [fix: whitelist match failure due to case ignoring](https://github.com/leizongmin/js-xss/pull/256) by @lumburr
12- [fix: class is wrong separated by attributes in method onTagAttr](https://github.com/leizongmin/js-xss/pull/253) by @lumburr
13
14## v1.0.11 (2022-03-06)
15
16- [feat: add support for allowList as an alias for whiteList](https://github.com/leizongmin/js-xss/pull/249) by @schu34
17
18## v1.0.10 (2021-10-08)
19
20- [Fix: #239 stripCommentTag DoS attack](https://github.com/leizongmin/js-xss/pull/239)
21
22## v1.0.9 (2021-05-06)
23
24- [Fix whitespace bypass #218](https://github.com/leizongmin/js-xss/pull/218/files) by @TomAnthony
25- [Add `<summary>` to default whitelist #216](https://github.com/leizongmin/js-xss/pull/216) by @spacegaier
26- [Add `<figure>` and `<figcaption>` to default whitelist](https://github.com/leizongmin/js-xss/pull/220) by @daraz999
27- Add `<audio crossorigin muted>`, `<video crossorigin muted playsinline poster>` to default whitelist
28- Add `<strike>` to default whitelist
29- Fix: typings IWhiteList allow any tag name
30- Fix: typings `onTag` options
31
32## v1.0.8 (2020-07-27)
33
34- [Allow default imports in TS #200](https://github.com/leizongmin/js-xss/pull/200) by @danvk
35- [Update handling of quoteStart to prevent sanitization bypass #201](https://github.com/leizongmin/js-xss/pull/201) by @TomAnthony
36
37## v1.0.7 (2020-06-08)
38
39- [added support for src embedded image, ftp and relative urls](https://github.com/leizongmin/js-xss/pull/189) by @sijanec

1	`# CHANGELOG`
2
3	`## v1.0.13 (2022-06-07)`
4
5	`- [revert: fix: comment has encoded](https://github.com/leizongmin/js-xss/pull/257)`
6
7	`## v1.0.12 (2022-06-04)`
8
9	`- [feat: add eslint:recommended check](https://github.com/leizongmin/js-xss/pull/252) by @lumburr`
10	`- [fix: comment has encoded](https://github.com/leizongmin/js-xss/pull/257) by @lumburr`
11	`- [fix: whitelist match failure due to case ignoring](https://github.com/leizongmin/js-xss/pull/256) by @lumburr`
12	`- [fix: class is wrong separated by attributes in method onTagAttr](https://github.com/leizongmin/js-xss/pull/253) by @lumburr`
13
14	`## v1.0.11 (2022-03-06)`
15
16	`- [feat: add support for allowList as an alias for whiteList](https://github.com/leizongmin/js-xss/pull/249) by @schu34`
17
18	`## v1.0.10 (2021-10-08)`
19
20	`- [Fix: #239 stripCommentTag DoS attack](https://github.com/leizongmin/js-xss/pull/239)`
21
22	`## v1.0.9 (2021-05-06)`
23
24	`- [Fix whitespace bypass #218](https://github.com/leizongmin/js-xss/pull/218/files) by @TomAnthony`
25	- [Add `<summary>` to default whitelist #216](https://github.com/leizongmin/js-xss/pull/216) by @spacegaier
26	- [Add `<figure>` and `<figcaption>` to default whitelist](https://github.com/leizongmin/js-xss/pull/220) by @daraz999
27	- Add `<audio crossorigin muted>`, `<video crossorigin muted playsinline poster>` to default whitelist
28	- Add `<strike>` to default whitelist
29	`- Fix: typings IWhiteList allow any tag name`
30	- Fix: typings `onTag` options
31
32	`## v1.0.8 (2020-07-27)`
33
34	`- [Allow default imports in TS #200](https://github.com/leizongmin/js-xss/pull/200) by @danvk`
35	`- [Update handling of quoteStart to prevent sanitization bypass #201](https://github.com/leizongmin/js-xss/pull/201) by @TomAnthony`
36
37	`## v1.0.7 (2020-06-08)`
38
39	`- [added support for src embedded image, ftp and relative urls](https://github.com/leizongmin/js-xss/pull/189) by @sijanec`