javascript/ionic-framework
1
0
Fork 0
mirror of https://github.com/ionic-team/ionic-framework.git synced 2025-08-24 23:01:57 +08:00
Code Issues Packages Projects Releases Wiki Activity

bug(security): allow name and slot attributes when sanitizing (#18246)

Browse Source 
* allow name attribute

* also add slot
This commit is contained in:
Liam DeBeasi
2019-05-14 11:28:31 -04:00
committed by GitHub
parent 394cf8d28f
commit ba0def3a38
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
core/src/utils/sanitization/index.ts
View File

@ -122,5 +122,5 @@ const getElementChildren = (element: any) => {
return (element.children != null) ? element.children : element.childNodes; return (element.children != null) ? element.children : element.childNodes;
}; };
const allowedAttributes = ['class', 'id', 'href', 'src']; const allowedAttributes = ['class', 'id', 'href', 'src', 'name', 'slot'];
const blockedTags = ['script', 'style', 'iframe', 'meta', 'link', 'object', 'embed']; const blockedTags = ['script', 'style', 'iframe', 'meta', 'link', 'object', 'embed'];