-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(utils): improve svg security #342
Conversation
fix(svg-loader): use responseXML for added security
Deploying with Cloudflare Pages
|
I've removed the previous code duplication and shifted logic into a separate Using @goremikins suggestion of |
Kudos, SonarCloud Quality Gate passed! 0 Bugs No Coverage information |
Bangkok team has already tried to hack the code but nobody is succeeding. I think we can merge this. |
Adds patch to strip event attributes from any SVG body