Skip to content
Changelog Hub

dompurify 2.0.8

npm / dompurify / 2.0.8 source

  • Fixed a bypass that can be abused in case SAFE_FOR_JQUERY is used with jQuery 3.x, thanks @masatokinugawa :bowing_woman:
  • Added new elements to whitelist, thanks @chris-morgan
  • Added first layer of prototype poisoning protection, thanks @dejang
  • Added better controls for uponSanitizeAttribute, thanks @devinrhode2
  • Added demo for node removal, thanks @mikesnare