Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

cure53 / DOMPurify Public

Notifications You must be signed in to change notification settings
Fork 732
Star 14.1k

Code
Issues 2
Pull requests 1
Actions
Projects
Wiki
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Wiki
Security
Insights

Releases: cure53/DOMPurify

Releases Tags

Releases · cure53/DOMPurify

DOMPurify 3.0.10

19 Mar 11:07

cure53

3.0.10

f2b637f

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 3.0.10

Fixed two possible bypasses when sanitizing an XML document and later using it in HTML, thanks @Slonser
Bumped up some build and test dependencies

Contributors

Slonser

Assets 2

All reactions

DOMPurify 2.4.8

19 Mar 11:05

cure53

2.4.8

416ba67

This commit was signed with the committer’s verified signature.

cure53 Cure53

GPG key ID: 5F0CDACD24BB6BF4

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 2.4.8

Fixed two possible bypasses when sanitizing an XML document and later using it in HTML, thanks @Slonser

Contributors

Slonser

Assets 2

ssi02014 reacted with thumbs up emoji

alexcavender reacted with hooray emoji

shahryarjb reacted with heart emoji

All reactions

👍 1 reaction
🎉 1 reaction
❤️ 1 reaction

3 people reacted

DOMPurify 3.0.9

20 Feb 14:31

cure53

3.0.9

699b1c9

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 3.0.9

Fixed a problem with proper detection of Custom Elements, thanks @kevin-mizu
Refactored the hasOwnProperty logic, thanks @ssi02014
Removed a superfluous console.warn making HappyDom happier, thanks @HugoPoi
Modernized some of the demo hooks for better looks, thanks @Steb95

Contributors

HugoPoi, kevin-mizu, and 2 other contributors

Assets 2

ghiscoding, ssi02014, kevin-mizu, hmturnbull, and fujikawa-rootip reacted with hooray emoji

ssi02014 and BUZZARDGTA reacted with heart emoji

All reactions

🎉 5 reactions
❤️ 2 reactions

6 people reacted

DOMPurify 3.0.8

05 Jan 16:43

cure53

3.0.8

ec1346a

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 3.0.8

Fixed errors caused by conditional exports, thanks @ssi02014
Fixed a type error when working with custom element config, thanks @cpmotion

Contributors

cpmotion and ssi02014

Assets 2

ssi02014 and mathiasdeoliveira reacted with thumbs up emoji

ssi02014, mathiasdeoliveira, ghiscoding, davidrunger, and djadmin reacted with hooray emoji

All reactions

👍 2 reactions
🎉 5 reactions

5 people reacted

DOMPurify 3.0.7

03 Jan 12:08

cure53

3.0.7

aa2c561

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 3.0.7

Added better protection against CSPP attacks, thanks @kevin-mizu
Updated browser versions for automated tests
Updated Node versions for automated tests
Refactored code base, thanks @ssi02014
Refactored build system & deployment, thanks @ssi02014

Contributors

kevin-mizu and ssi02014

Assets 2

ssi02014 and hsk-kr reacted with thumbs up emoji

ssi02014, caodchuong312, and ghiscoding reacted with hooray emoji

ssi02014 reacted with rocket emoji

All reactions

👍 2 reactions
🎉 3 reactions
🚀 1 reaction

4 people reacted

DOMPurify 3.0.6

28 Sep 08:33

cure53

3.0.6

1b864e7

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 3.0.6

Refactored the core code-base and several utilities, thanks @ssi02014
Updated and fixed several sections of the README, thanks @ssi02014
Updated several outdated build and test dependencies

Contributors

ssi02014

Assets 2

vlad-borodaev, dmvgbs, ssi02014, djadmin, kozi, and TateGunning reacted with thumbs up emoji

All reactions

👍 6 reactions

6 people reacted

DOMPurify 3.0.5

11 Jul 08:00

cure53

3.0.5

c96c9df

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 3.0.5

Fixed a licensing issue spotted and reported by @george-thomas-hill
Updated several build and test dependencies

Contributors

george-thomas-hill

Assets 2

vlad-borodaev, desobe-ir, erickmiller, codesplinta, gtg2619, and LevKochin reacted with thumbs up emoji

codesplinta reacted with rocket emoji

All reactions

👍 6 reactions
🚀 1 reaction

6 people reacted

DOMPurify 2.4.7

11 Jul 07:42

cure53

2.4.7

ef731c0

This commit was signed with the committer’s verified signature.

cure53 Cure53

GPG key ID: 5F0CDACD24BB6BF4

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 2.4.7

Fixed a licensing issue spotted and reported by @george-thomas-hill

Contributors

george-thomas-hill

Assets 2

All reactions

DOMPurify 3.0.4

29 Jun 16:08

cure53

3.0.4

1777363

This commit was signed with the committer’s verified signature.

cure53 Cure53

GPG key ID: 5F0CDACD24BB6BF4

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

DOMPurify 3.0.4

Fixed a bypass in jsdom 22 in case the noframes element is permitted, thanks @leeN
Fixed a typo with shadowrootmod which should be shadowrootmode, thanks @masatokinugawa