Bump dompurify from 2.4.4 to 3.0.6
Bumps dompurify from 2.4.4 to 3.0.6.
Release notes
Sourced from dompurify's releases.
DOMPurify 3.0.6
- Refactored the core code-base and several utilities, thanks
@ssi02014
- Updated and fixed several sections of the README, thanks
@ssi02014
- Updated several outdated build and test dependencies
DOMPurify 3.0.5
- Fixed a licensing issue spotted and reported by
@george-thomas-hill
- Updated several build and test dependencies
DOMPurify 3.0.4
- Fixed a bypass in jsdom 22 in case the noframes element is permitted, thanks
@leeN
- Fixed a typo with
shadowrootmod
which should beshadowrootmode
, thanks@masatokinugawa
DOMPurify 3.0.3
- Added new
TRUSTED_TYPES_POLICY
configuration option, thanks@dejang
- Added
feDropShadow
to the SVG filter allow-list, thanks@SelfMadeSystem
DOMPurify 3.0.2
- Fixed an issue with
ALLOWED_URI_REGEXP
not being reset, thanks@mukilane
- Added
mprescripts
tag to allowed MathML elements, thanks@duyhai94
- Added SMS URI scheme to allowed URI schemes, tanks
@Kiwka
- Updated supported browser versions for nicer code and smaller size, thanks
@buzinas
DOMPurify 3.0.1
- Fixed a problem with improper reset of custom HTML options, thanks
@ammaraskar
DOMPurify 3.0.0
- Removed all code that is for MSIE-only
- Removed all tests that are for MSIE-only
- Modified documentation to reflect new state of MSIE support
- Added support for
ALLOW_SELF_CLOSE_IN_ATTR
flag, thanks@edg2s
@AndreVirtimo
- Added better support for
shadowrootmode
, thanks@mfreed7
NOTE Please use the 2.4.4 release if you still need MSIE support, 3.0.0 comes without the MSIE overhead
DOMPurify 2.4.7
- Fixed a licensing issue spotted and reported by
@george-thomas-hill
DOMPurify 2.4.6
- Fixed a bypass in jsdom 22 in case the
noframes
element is permitted, thanks@leeN
DOMPurify 2.4.5
- Fixed a problem with improper reset of custom HTML options, thanks
@ammaraskar
Commits
-
1b864e7
Merge pull request #860 from cure53/main -
7e6a7ee
chore: Preparing 3.0.6 release -
7718a39
Update README.md -
1b76e6c
Update README.md -
977df97
Update README.md -
926a8cd
Merge pull request #855 from cure53/dependabot/github_actions/actions/checkout-4 -
2d1a4c3
build(deps): bump actions/checkout from 3 to 4 -
48bd850
docs: Fixed a faulty sanitization result in README -
1154de2
Merge pull request #850 from ssi02014/fix/createIterator -
e79525c
refac(purify): Rename _isBasicCustomElement - Additional commits viewable in compare view
Dependabot commands
You can trigger Dependabot actions by commenting on this MR
-
$dependabot rebase
will rebase this MR -
$dependabot recreate
will recreate this MR rewriting all the manual changes and resolving conflicts