Skip to content

Commit 3646925

Browse files
author
shengyonggen
committed
Release 1.16.15
1 parent c711e19 commit 3646925

14 files changed

+42
-34
lines changed

CHANGELOG.md

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,8 @@
1+
## 1.16.15 (2021-05-7)
2+
1. 修复
3+
- 修复不采集 `$WebStay` 事件时,触达率图错误提示不准确问题
4+
- 修复 `XSS` 问题
5+
16
## 1.16.14 (2021-04-30)
27
1. 新增
38
- 新增参数配置 `is_secure_cookie`

core/sensorsdata.amd.min.js

Lines changed: 3 additions & 3 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

core/sensorsdata.es6.min.js

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

core/sensorsdata.min.js

Lines changed: 3 additions & 3 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

heatmap.min.js

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "sa-sdk-javascript",
3-
"version": "1.16.14",
3+
"version": "1.16.15",
44
"description": "official sensorsdata javascript sdk",
55
"main": "sensorsdata.min.js",
66
"scripts": {

product/heatmap.full.js

Lines changed: 7 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -9248,8 +9248,12 @@
92489248
obj.success(data);
92499249
},
92509250
error: function(res) {
9251-
sd.log('AJAX 请求失败,转换为 JSONP 请求', res);
9252-
_this.jsonp(obj);
9251+
if (_.isObject(res) && res.error) {
9252+
obj.error(res);
9253+
} else {
9254+
sd.log('AJAX 请求失败,转换为 JSONP 请求', res);
9255+
_this.jsonp(obj);
9256+
}
92539257
},
92549258
timeout: 5000
92559259
});
@@ -9398,7 +9402,7 @@
93989402

93999403
window.sa_jssdk_heatmap_render = function(se, data, type, url) {
94009404
sd = se;
9401-
sd.heatmap_version = '1.16.14';
9405+
sd.heatmap_version = '1.16.15';
94029406
_ = sd._;
94039407

94049408
_.bindReady = function(fn, win) {

product/sensorsdata.amd.full.js

Lines changed: 6 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -2970,7 +2970,7 @@
29702970
};
29712971

29722972
_.secCheck = {
2973-
isHTTPURL: function(str) {
2973+
isHttpUrl: function(str) {
29742974
if (typeof str !== 'string') return false;
29752975
var _regex = /^https?:\/\/.+/;
29762976
if (_regex.test(str) === false) {
@@ -2981,7 +2981,7 @@
29812981
},
29822982
removeScriptProtocol: function(str) {
29832983
if (typeof str !== 'string') return '';
2984-
var _regex = /^\s*javascript:/i;
2984+
var _regex = /^\s*javascript/i;
29852985
while (_regex.test(str)) {
29862986
str = str.replace(_regex, '');
29872987
}
@@ -3247,7 +3247,7 @@
32473247

32483248
sd.setInitVar = function() {
32493249
sd._t = sd._t || 1 * new Date();
3250-
sd.lib_version = '1.16.14';
3250+
sd.lib_version = '1.16.15';
32513251
sd.is_first_visitor = false;
32523252
sd.source_channel_standard = 'utm_source utm_medium utm_campaign utm_content utm_term';
32533253
};
@@ -4117,9 +4117,10 @@
41174117
}
41184118
if (event.data.data.userURL && location.search.match(/sa-visual-mode=true/)) {
41194119
function validUrl(value) {
4120-
if (value) {
4120+
if (_.secCheck.isHttpUrl(value)) {
41214121
return _.secCheck.removeScriptProtocol(value);
41224122
} else {
4123+
sd.log('可视化模式检测 URL 失败');
41234124
return false;
41244125
}
41254126
}
@@ -4151,7 +4152,7 @@
41514152
source: 'sa-web-sdk',
41524153
type: 'v-is-vtrack',
41534154
data: {
4154-
sdkversion: '1.16.14'
4155+
sdkversion: '1.16.15'
41554156
}
41564157
},
41574158
'*'

product/sensorsdata.es6.full.js

Lines changed: 6 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -2964,7 +2964,7 @@ if (!String.prototype.replaceAll) {
29642964
};
29652965

29662966
_.secCheck = {
2967-
isHTTPURL: function(str) {
2967+
isHttpUrl: function(str) {
29682968
if (typeof str !== 'string') return false;
29692969
var _regex = /^https?:\/\/.+/;
29702970
if (_regex.test(str) === false) {
@@ -2975,7 +2975,7 @@ if (!String.prototype.replaceAll) {
29752975
},
29762976
removeScriptProtocol: function(str) {
29772977
if (typeof str !== 'string') return '';
2978-
var _regex = /^\s*javascript:/i;
2978+
var _regex = /^\s*javascript/i;
29792979
while (_regex.test(str)) {
29802980
str = str.replace(_regex, '');
29812981
}
@@ -3241,7 +3241,7 @@ sd.setPreConfig = function(sa) {
32413241

32423242
sd.setInitVar = function() {
32433243
sd._t = sd._t || 1 * new Date();
3244-
sd.lib_version = '1.16.14';
3244+
sd.lib_version = '1.16.15';
32453245
sd.is_first_visitor = false;
32463246
sd.source_channel_standard = 'utm_source utm_medium utm_campaign utm_content utm_term';
32473247
};
@@ -4111,9 +4111,10 @@ sd.detectMode = function() {
41114111
}
41124112
if (event.data.data.userURL && location.search.match(/sa-visual-mode=true/)) {
41134113
function validUrl(value) {
4114-
if (value) {
4114+
if (_.secCheck.isHttpUrl(value)) {
41154115
return _.secCheck.removeScriptProtocol(value);
41164116
} else {
4117+
sd.log('可视化模式检测 URL 失败');
41174118
return false;
41184119
}
41194120
}
@@ -4145,7 +4146,7 @@ sd.detectMode = function() {
41454146
source: 'sa-web-sdk',
41464147
type: 'v-is-vtrack',
41474148
data: {
4148-
sdkversion: '1.16.14'
4149+
sdkversion: '1.16.15'
41494150
}
41504151
},
41514152
'*'

product/sensorsdata.full.js

Lines changed: 6 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -2972,7 +2972,7 @@
29722972
};
29732973

29742974
_.secCheck = {
2975-
isHTTPURL: function(str) {
2975+
isHttpUrl: function(str) {
29762976
if (typeof str !== 'string') return false;
29772977
var _regex = /^https?:\/\/.+/;
29782978
if (_regex.test(str) === false) {
@@ -2983,7 +2983,7 @@
29832983
},
29842984
removeScriptProtocol: function(str) {
29852985
if (typeof str !== 'string') return '';
2986-
var _regex = /^\s*javascript:/i;
2986+
var _regex = /^\s*javascript/i;
29872987
while (_regex.test(str)) {
29882988
str = str.replace(_regex, '');
29892989
}
@@ -3249,7 +3249,7 @@
32493249

32503250
sd.setInitVar = function() {
32513251
sd._t = sd._t || 1 * new Date();
3252-
sd.lib_version = '1.16.14';
3252+
sd.lib_version = '1.16.15';
32533253
sd.is_first_visitor = false;
32543254
sd.source_channel_standard = 'utm_source utm_medium utm_campaign utm_content utm_term';
32553255
};
@@ -4119,9 +4119,10 @@
41194119
}
41204120
if (event.data.data.userURL && location.search.match(/sa-visual-mode=true/)) {
41214121
function validUrl(value) {
4122-
if (value) {
4122+
if (_.secCheck.isHttpUrl(value)) {
41234123
return _.secCheck.removeScriptProtocol(value);
41244124
} else {
4125+
sd.log('可视化模式检测 URL 失败');
41254126
return false;
41264127
}
41274128
}
@@ -4153,7 +4154,7 @@
41534154
source: 'sa-web-sdk',
41544155
type: 'v-is-vtrack',
41554156
data: {
4156-
sdkversion: '1.16.14'
4157+
sdkversion: '1.16.15'
41574158
}
41584159
},
41594160
'*'

0 commit comments

Comments
 (0)