Sanitize vulnerability history comment
- add sanitation to vulnerability history comments - add additional tests for XSS of alert and iframe - add changelog for comment sanitization - use comment.note_url instead of comment.note to render html - use .md class to normalize incoming CSS - Use v-html on note_url - Update sanitize import to come from dompurify - we no longer use the library `sanitize-html`, but instead use the library `dompurify` - use the `sanitize` method from `dompurify` and update tests
Showing
Please register or sign in to comment