Skip to content

Merge upstream changes #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 325 commits into
base: mathpix
Choose a base branch
from
Open

Merge upstream changes #1

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
325 commits
Select commit Hold shift + click to select a range
d59fdac
Merge pull request #444 from aHerbots/patch-1
abea Nov 30, 2020
4be8a61
Adds acknowledgement to changelog. (#445)
abea Dec 1, 2020
6a7b0ca
bumps the version number (#446)
abea Dec 1, 2020
f07bf65
Upgrade htmlparser2
TrySound Oct 9, 2020
102c623
Upgrade to v6
TrySound Dec 13, 2020
251e14a
Merge pull request #429 from TrySound/upgrade-htmlparser2
abea Dec 16, 2020
af6e348
Fixes a typo in the changelog
Dec 16, 2020
5d6c6e6
Updates the version number
Dec 16, 2020
7229906
Fleshes out changelog message
abea Dec 16, 2020
ca4b62a
stop IDNA iframe attacks
boutell Jan 22, 2021
5804fa9
changelog
boutell Jan 22, 2021
477b032
Updates README to specify node version (#457)
abea Jan 22, 2021
bdf7836
Merge pull request #458 from apostrophecms/stop-idna-iframe-attacks
boutell Jan 22, 2021
b77e1d9
2.3.1
boutell Jan 22, 2021
dafee4f
Update README.md
Aspedm Jan 26, 2021
54851d0
new and interesting iframe validation exploits
boutell Jan 26, 2021
1ecf30f
pass eslint
boutell Jan 26, 2021
bff6d9f
Merge pull request #459 from Aspedm/main
abea Jan 26, 2021
5395e36
markdown
boutell Jan 26, 2021
6012524
Merge pull request #460 from apostrophecms/iframe-validation-redux
boutell Jan 26, 2021
fd3cb54
changelog credit
boutell Jan 26, 2021
95d4833
Adds changelog entry (#461)
abea Jan 27, 2021
8041e41
2.3.3: security: block schemes with the characters -, + and . where a…
boutell Mar 19, 2021
b9a3434
docs: tweak code language in README for JS imports
Cherry Mar 19, 2021
c11652e
Merge pull request #466 from Cherry/patch-1
boutell Mar 22, 2021
d58bdeb
Skip empty globs when building allowed attributes map
zhangbenber Apr 23, 2021
f6c2620
Add support for classes with wildcards
zhangbenber Apr 23, 2021
cb1fbbc
Update README for allowedClasses wildcard support
zhangbenber Apr 27, 2021
49563c5
update README regarding TypeScript (#420)
jbdemonte Apr 30, 2021
945a92b
update changelog
zhangbenber May 5, 2021
57cb9bd
Merge pull request #472 from zhangbenber/main
abea May 18, 2021
17c644c
Updates the changelog (#478)
abea May 18, 2021
1155d4a
Merge pull request #473 from jbdemonte/main
abea May 19, 2021
b90d1fd
Allow script tags for specific domains / hostnames
May 18, 2021
fb44466
Merge branch 'main' into add-allow-domains-and-hostnames-for-script
abea Jun 25, 2021
bdeade3
Catch exception in case of malformed URL
Aug 24, 2021
41ce7ab
Provide more examples on authorize script tags
Aug 30, 2021
df4f215
Rename test to allow script to be clearer
Aug 30, 2021
d0dd5e6
Merge pull request #480 from yorickgirard/add-allow-domains-and-hostn…
boutell Aug 31, 2021
981b48a
Replaces uses of whitelist (#491)
abea Sep 1, 2021
fbde048
Bumps version number (#493)
abea Sep 8, 2021
0abb857
PRO-2076 no script tag bodies allowed at all when locking down to cer…
boutell Sep 14, 2021
3d0d247
Merge pull request #495 from apostrophecms/pro-2076
boutell Sep 14, 2021
fd079bb
Fix apostrophecms/sanitize-html#486
postatum Sep 21, 2021
665b908
Change nullish values check to "== null"
postatum Sep 22, 2021
07fa721
Update CHANGELOG for #496
postatum Sep 23, 2021
adba3b0
Merge pull request #496 from postatum/i486_nullish_html
boutell Sep 23, 2021
f0129e7
thank you
boutell Sep 23, 2021
7d0ed69
"UNRELEASED"
boutell Sep 23, 2021
d314111
README: Add note about text content being escaped.
xyzshantaram Oct 4, 2021
8d0b216
make sanitize-html monospaced
xyzshantaram Oct 4, 2021
883e6cc
replace erroneous note about quotes
xyzshantaram Oct 5, 2021
f82d86a
remove ambiguity in note about escapes
xyzshantaram Oct 7, 2021
5624123
Merge pull request #501 from xyzshantaram/main
boutell Oct 8, 2021
cefabbd
credit
boutell Oct 8, 2021
b41ce16
Bumps version (#503)
abea Oct 13, 2021
a7d3b84
hotfix: remove klona
boutell Nov 2, 2021
b21e9ca
Merge pull request #511 from apostrophecms/hotfix-2.5.3
boutell Nov 2, 2021
a862329
allowedClasses support for regex expressions
Nov 6, 2021
ec7766e
Accept regExp in options & README update
Nov 9, 2021
9d23b0b
nit - reduce git diff
Nov 9, 2021
98294bf
update readme
Nov 10, 2021
2975383
Merge pull request #512 from alex-rantos/alex-rantos/allowedClasses-r…
boutell Nov 12, 2021
5c28413
added credit and adjusted README language about regular expressions
boutell Nov 12, 2021
5a6000a
Merge pull request #513 from apostrophecms/credit-and-readme
boutell Nov 15, 2021
4348942
fix: fix inconsistent iframe src behavior across browsers
mattclough1 Oct 14, 2021
6738af3
Merge pull request #505 from mattclough1/504-whatwg-url
boutell Nov 16, 2021
942f2e1
Revert "Fix #504: fix inconsistent iframe src behavior across browsers"
boutell Nov 16, 2021
e5027ef
Merge pull request #515 from apostrophecms/revert-505-504-whatwg-url
boutell Nov 16, 2021
d737f39
Bumps version (#520)
abea Nov 23, 2021
c1112fb
fix trailing text issue
Dec 4, 2021
836c5ab
add CHANGELOG entry
Dec 7, 2021
d905b3b
typo on changelog
Dec 7, 2021
d077c9f
Merge pull request #521 from alex-rantos/fix-trailing-text
abea Dec 7, 2021
da9767f
Fixes important stripping (#522)
abea Dec 7, 2021
379b55b
Bumps version (#523)
abea Dec 8, 2021
be9c90d
Add common image attributes
zadeviggers Jan 24, 2022
5fccedb
Allow srcset
zadeviggers Jan 25, 2022
43f28f3
Update changelog
zadeviggers Jan 25, 2022
1971a57
Update defaults in readme
zadeviggers Jan 25, 2022
7338f8b
Merge pull request #529 from zadeviggers/patch-1
boutell Jan 25, 2022
208cdb4
zade credit
boutell Jan 25, 2022
72989f1
Merge pull request #530 from apostrophecms/zade-credit
boutell Jan 25, 2022
3cdc262
release 2.7.0 (#534)
boutell Feb 4, 2022
329dae7
Fix protocol relative url in scripts tags #531
paweljq Jul 12, 2022
8e3b00f
fix typos in readme
thejch Jul 13, 2022
3c3f075
Merge pull request #556 from cha147/patch-1
BoDonkey Jul 14, 2022
994f962
Merge pull request #555 from paweljq/fix_protocol_relative_script_tag
boutell Jul 14, 2022
7c7ccb4
credit
boutell Jul 14, 2022
6683aad
remove DoS vulnerability
boutell Jul 14, 2022
b6c4971
release 2.7.1 (with security fix previously tested and approved by Miro)
boutell Jul 20, 2022
b4682c1
Merge pull request #557 from apostrophecms/release-2.7.1
boutell Jul 20, 2022
cecb22b
Another case of bad markup identified in Issue#549. Closing tags with…
kedarchandrayan Sep 1, 2022
30ff80f
Change log updated for fix for issue #549
kedarchandrayan Sep 1, 2022
e3c22a3
Added new test case for tolerating not closed p tags. This is an impo…
kedarchandrayan Sep 12, 2022
6b76815
Merge pull request #568 from chalotrekking/develop
boutell Sep 12, 2022
20f51b3
changelog cleanup
boutell Sep 12, 2022
0573fb6
bump version to 2.7.2 (#572)
ETLaurent Sep 15, 2022
6066911
Upgrades `htmlparser2` to new major version `^8.0.0`.
kedarchandrayan Sep 21, 2022
de35390
If allowedTags is falsey but not exactly false, then do not assume th…
kedarchandrayan Oct 11, 2022
9d8c8a4
minor typo in changelog.
kedarchandrayan Oct 11, 2022
47fb1f7
minor typo in tests.
kedarchandrayan Oct 11, 2022
ba3a2f6
Merge pull request #577 from chalotrekking/main
boutell Oct 24, 2022
63d8241
cleanup of changelog
boutell Oct 24, 2022
4596959
Merge branch 'main' into develop
kedarchandrayan Oct 25, 2022
e1034cf
Merge pull request #573 from chalotrekking/develop
boutell Oct 31, 2022
795d079
changelog update
boutell Oct 31, 2022
bee754e
release 2.8.0
boutell Dec 12, 2022
333ec31
Merge pull request #590 from apostrophecms/release-2.8.0
boutell Dec 12, 2022
7bc09eb
Fix behavour for numbers
alexander-schranz Dec 13, 2022
f68cfac
Rename test to hande numbers as strings
alexander-schranz Dec 13, 2022
ba17078
Merge pull request #594 from alexander-schranz/bugfix/number-cast
boutell Dec 13, 2022
8b5ed50
thank you
boutell Dec 13, 2022
58a1017
feat(parseStyleAttributes): add option to skip style parsing
bertyhell Dec 17, 2022
d100dcc
fix(parseStyleAttribute): explain disabled allowedStyles in readme
bertyhell Dec 19, 2022
6351caa
fix(parseStyleAttribute): throw error used together with allowedStyles
bertyhell Dec 20, 2022
db9ad2b
fix(parseStyleAttribute): ensure failed test actually fails
bertyhell Dec 20, 2022
69e841c
release 2.8.1
boutell Dec 21, 2022
bdd9c39
Merge pull request #597 from apostrophecms/release-2.8.1
boutell Dec 21, 2022
3c006e7
fix(parseStyleAttribute): improve documentation
bertyhell Jan 23, 2023
f9ece68
fix(parseStyleAttribute): improve documentation (2)
bertyhell Jan 23, 2023
84f895f
Merge pull request #596 from bertyhell/feature/parse-style-attributes
boutell Jan 24, 2023
2062a2d
oops, we forgot to release parseStyleAttributes
boutell Jan 27, 2023
f12a665
Merge pull request #605 from apostrophecms/release-2.9.0
boutell Jan 27, 2023
b08a176
Fix #464
dliebner Jan 31, 2023
0aa5a98
Fixing
dliebner Jan 31, 2023
1d41e4d
Fixing
dliebner Jan 31, 2023
e8a0f80
Handle htmlparser2.onclosetag isImplied parameter
dliebner Jan 31, 2023
f9b6fa5
Add tests
dliebner Feb 1, 2023
6ea35ad
linting
dliebner Feb 1, 2023
d5fbdc6
Merge pull request #607 from dliebner/main
BoDonkey Feb 2, 2023
e95ffe7
release 2.10.0
boutell Feb 17, 2023
b9eb465
Merge pull request #608 from apostrophecms/release-2.10.0
boutell Feb 17, 2023
434b919
Upgraded mocha version and applied some lint fixes in tests
vitaliishpital-ledger Mar 6, 2023
e565869
update CHANGELOG.md
vitaliishpital-ledger Mar 6, 2023
b8cc111
Merge pull request #611 from VitaliiShpital/main
BoDonkey Mar 6, 2023
6b98672
add thank you to readme
BoDonkey Mar 6, 2023
25869ac
Merge pull request #612 from apostrophecms/thank-you-message
BoDonkey Mar 6, 2023
cf7a5e4
Show parseStyleAttributes warning in browser only
mog422 Mar 8, 2023
3be031d
Merge pull request #614 from mog422/main
BoDonkey Mar 8, 2023
7e44ff3
add thank you
BoDonkey Mar 8, 2023
cd873a6
Merge pull request #615 from apostrophecms/mogg-thank-you
BoDonkey Mar 9, 2023
27d9e6a
Allow false in allowedClasses
KevinSJ May 26, 2023
de2b9f1
Adding test for when allowedClasses is false
KevinSJ May 26, 2023
94a79b6
Update README and CHANGELOG
KevinSJ May 26, 2023
d560170
feat: remove empty non-boolean attributes
dylanarmstrong Jun 5, 2023
aff7818
feat: move nonbooleanattributes to options
dylanarmstrong Jun 5, 2023
cefe12d
doc: update documentation for nonbooleanattributes
dylanarmstrong Jun 5, 2023
cb8d1e2
test: more tests for nonbooleanattributes
dylanarmstrong Jun 5, 2023
cebdc07
feat: support wildcard on empty attributes
dylanarmstrong Jun 5, 2023
21c332e
doc: updated readme per feedback
dylanarmstrong Jun 9, 2023
c8e02df
Merge pull request #624 from dylanarmstrong/feat/remove-empty-non-boo…
boutell Jun 9, 2023
170269b
credit
boutell Jun 9, 2023
7df9d8b
Merge pull request #623 from KevinSJ/main
boutell Jun 13, 2023
6c0e5fe
thank you
boutell Jun 13, 2023
7bd3e3f
release 2.11.0
boutell Jun 21, 2023
c4491ea
Merge pull request #625 from apostrophecms/2.11.0
boutell Jun 21, 2023
b3400f2
Update README.md
alfreema Jun 29, 2023
1bde207
Update README.md - Remove circleci reference
alfreema Jun 29, 2023
9856e7b
Delete .circleci directory
alfreema Jun 29, 2023
cb6efe1
Merge pull request #628 from alfreema/patch-1
boutell Jun 29, 2023
4f6cea6
Added 'allowedEmptyAttributes' option and kept empty 'alt' value by d…
zhna123 Sep 26, 2023
2c7ac45
Added more tests and modified CHANGELOG
zhna123 Sep 27, 2023
c52a9f0
Merge pull request #634 from zhna123/empty-alt
BoDonkey Sep 27, 2023
54a6ac2
allow svg element
gkumar9891 Feb 4, 2024
b268d15
changes in documentation
gkumar9891 Feb 4, 2024
31def35
changes to documentation
gkumar9891 Feb 5, 2024
eb932f8
Merge pull request #646 from gkumar9891/allow-svg-element
BoDonkey Feb 6, 2024
075499d
fix: ignore source maps when processing with postcss
dylanarmstrong Feb 21, 2024
c376501
doc: update changelog
dylanarmstrong Feb 21, 2024
1e2294c
test: added test for postcss map
dylanarmstrong Feb 21, 2024
ff18600
release 2.12.0
BoDonkey Feb 21, 2024
a226fe7
Merge pull request #651 from apostrophecms/release-2.12.0
BoDonkey Feb 21, 2024
ee71ff0
Add community contribution thanks you
BoDonkey Feb 21, 2024
5a5a74e
Merge pull request #652 from apostrophecms/add-thanks-to-changelog
BoDonkey Feb 21, 2024
c5dbdf7
Merge pull request #650 from dylanarmstrong/fix/ignore-source-maps
boutell Feb 22, 2024
f8e02be
release 2.12.1
boutell Feb 22, 2024
4a7d7dd
Merge pull request #654 from apostrophecms/release-2.12.1
boutell Feb 22, 2024
222210b
doc: add supported version for typescript
dylanarmstrong Feb 23, 2024
dade120
doc: update changelog
dylanarmstrong Feb 23, 2024
d2925db
Merge pull request #655 from dylanarmstrong/doc/readme-typescript-ver…
boutell Feb 23, 2024
265a121
added option disallowedTagsMode: 'completelyDiscard'
gkumar9891 Feb 24, 2024
d3c1141
changed CHANGELOG
gkumar9891 Feb 27, 2024
1f52783
added test case and changed README file
gkumar9891 Feb 29, 2024
7d30949
changed README
gkumar9891 Mar 1, 2024
d6cd120
README changes
gkumar9891 Mar 4, 2024
eb4b10c
README changes
gkumar9891 Mar 5, 2024
31aebae
README changes
gkumar9891 Mar 5, 2024
e410f6e
Merge pull request #656 from gkumar9891/allow-tagged-html
BoDonkey Mar 14, 2024
49a320b
Fixes readme and adds thanks
BoDonkey Mar 14, 2024
ad19ac0
Merge pull request #658 from apostrophecms/thanks-and-fixes
BoDonkey Mar 14, 2024
2e56d1c
release 2.13.0
boutell Mar 20, 2024
f47281e
Merge pull request #661 from apostrophecms/release-2.13.0
boutell Mar 20, 2024
7ba71db
fix: allow classes that match `allowedClasses` regex for all tags
anak-dev Sep 21, 2024
5588fd8
docs: update changelog
anak-dev Sep 21, 2024
c0a7bbd
Merge pull request #675 from anak-dev/anak-dev-main
boutell Sep 23, 2024
f4c3ca9
thanks
boutell Sep 23, 2024
4d5c4cb
Merge pull request #676 from apostrophecms/thanks-anak-dev
boutell Sep 30, 2024
bf08233
release 2.13.1
boutell Oct 3, 2024
20878b9
Merge pull request #678 from apostrophecms/release-2.13.1
boutell Oct 3, 2024
98b4900
still add text added by transformation when tag is discarded
f0x52 Dec 6, 2024
de2aefb
add testcase for transforming text inside empty tags
f0x52 Dec 9, 2024
19e9532
changelog entry
f0x52 Dec 9, 2024
d50f36f
Merge pull request #684 from f0x52/transform-new-text1
BoDonkey Dec 10, 2024
af62944
release 2.14.0
boutell Dec 18, 2024
4ae37d9
Merge pull request #687 from apostrophecms/release-2.14.0
boutell Dec 18, 2024
1a11f7c
eslint
boutell Dec 18, 2024
1a58c6a
fix: remove duplicate "main" from default and use "menu" instead
eikowagenknecht Dec 19, 2024
54b04ec
Merge pull request #688 from eikowagenknecht/patch-1
BoDonkey Jan 2, 2025
83a9785
feat: add tag open, tag close, and text events
naktinis Feb 2, 2025
3842f7e
tiny improvements
rChaoz Mar 3, 2025
e605b7d
implement new feature
rChaoz Mar 3, 2025
5c42196
add tests
rChaoz Mar 3, 2025
4e042eb
add docs
rChaoz Mar 3, 2025
d40811a
update changelog
rChaoz Mar 3, 2025
0c2b27a
add an extra test to ensure compatibility with discarded tags
rChaoz Mar 3, 2025
ad8578d
rename 'tag' -> 'excludeTag'
rChaoz Mar 3, 2025
a46ea0c
fix readme
rChaoz Mar 3, 2025
3034217
and changelog
rChaoz Mar 3, 2025
7ec6b56
chore: add a test for a real-world use case using onOpenTag/onCloseTag
naktinis Mar 4, 2025
a789b07
also update test names
rChaoz Mar 4, 2025
1c385f2
Merge pull request #695 from rChaoz/feat/exclusive-filter-options
boutell Mar 6, 2025
7a8e06d
chore: update tests to check callback arguments, check behavior in ne…
naktinis Mar 16, 2025
323db1d
release 2.15.0
boutell Mar 19, 2025
41eeb7a
Merge pull request #697 from apostrophecms/release-2.15.0
boutell Mar 19, 2025
2c85213
chore: add documentation for the parsing events
naktinis Mar 26, 2025
a14813f
chore: apply suggestions from code review
naktinis Mar 26, 2025
999d9ec
chore: simplify the example
naktinis Mar 26, 2025
dd7d860
chore: remove onText event and document attributes of onOpenTag and o…
naktinis Mar 27, 2025
a0a0ef3
chore: fix code markdown
naktinis Mar 27, 2025
007523a
fix: example output
naktinis Mar 27, 2025
0d67ebd
chore: update test to demonstrate isImplied argument, demonstrate all…
naktinis Mar 27, 2025
be113c6
chore: add a CHANGELOG entry
naktinis Mar 27, 2025
fb7a13b
Merge branch 'main' into add-tag-and-text-events
naktinis Mar 27, 2025
3f609e3
chore: add a note about tag open/close event example being illustrative
naktinis Apr 8, 2025
b3dd0e6
Merge pull request #692 from naktinis/add-tag-and-text-events
boutell Apr 8, 2025
4248936
thanks
boutell Apr 8, 2025
0313050
Merge pull request #701 from apostrophecms/thanks-692
boutell Apr 9, 2025
7caf6d2
release 2.16.0
boutell Apr 16, 2025
3b45c7c
Merge pull request #702 from apostrophecms/release-2.16.0
boutell Apr 16, 2025
ae1dc35
Add `preserveEscapedAttributes` option to allow attributes on escaped…
benelliott Jul 8, 2024
3d2893e
Add documentation for `preserveEscapedAttributes` option
benelliott Jul 8, 2024
27de3a8
Add test demonstrating that preserveEscapedAttributes doesn't affect …
benelliott Jul 9, 2024
f07ce9d
README.md: Add warning on usage of `preserveEscapedAttributes`
benelliott May 8, 2025
8628cea
Update README.md
boutell May 12, 2025
614e7df
Merge pull request #668 from benelliott/feature/preserve-escaped-attr…
BoDonkey May 12, 2025
0e5d881
Update CHANGELOG
BoDonkey May 12, 2025
da16903
Merge pull request #704 from apostrophecms/add-thanks-to-changelog
BoDonkey May 12, 2025
c487e77
release 2.17.0
boutell May 14, 2025
86efc06
Merge pull request #705 from apostrophecms/release-2.17.0
boutell May 14, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
22 changes: 0 additions & 22 deletions .circleci/config.yml
View file
Open in desktop

This file was deleted.

1 change: 0 additions & 1 deletion .eslintignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,2 +1 @@
node_modules
dist
9 changes: 8 additions & 1 deletion .eslintrc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,13 @@
{
"extends": "apostrophe",
"rules": {
"no-useless-escape": 1
"no-console": [
"error",
{
"allow": [
"warn"
]
}
]
}
}
2 changes: 1 addition & 1 deletion .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,6 @@ package-lock.json
npm-debug.log
*.DS_Store
node_modules
dist
.idea
# We do not commit CSS, only LESS
public/css/*.css
394 changes: 315 additions & 79 deletions CHANGELOG.md
View file
Open in desktop

Large diffs are not rendered by default.

523 changes: 401 additions & 122 deletions README.md
View file
Open in desktop

Large diffs are not rendered by default.

Loading