Latest Threat Research:SANDWORM_MODE: Shai-Hulud-Style npm Worm Hijacks CI Workflows and Poisons AI Toolchains.Details
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

@kolkov/angular-editor

Package Overview
Dependencies
Maintainers
1
Versions
108
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@kolkov/angular-editor - npm Package Compare versions

Comparing version
3.0.2
 to
3.0.3
+20
-0
CHANGELOG.md

@@ -0,1 +1,21 @@

<a name="3.0.3"></a>
## [3.0.3](https://github.com/kolkov/angular-editor/compare/v3.0.2...v3.0.3) (2025-01-22) - Security Hotfix
### Security
* **CRITICAL:** Fixed XSS vulnerability in `refreshView()` method ([#580](https://github.com/kolkov/angular-editor/issues/580)) ([774a97d](https://github.com/kolkov/angular-editor/commit/774a97d))
- XSS could bypass sanitizer when setting editor value via ngModel/formControl
- Sanitization now properly applied to all innerHTML assignments
- Thanks to @MarioTesoro for responsible disclosure with PoC
### Bug Fixes
* **links:** Preserve relative URLs when editing existing links ([#359](https://github.com/kolkov/angular-editor/issues/359)) ([c691d30](https://github.com/kolkov/angular-editor/commit/c691d30))
- Use `getAttribute('href')` instead of `.href` property
- Prevents adding hostname to relative paths
* **debug:** Remove debug `console.log` statement from focus() method ([#324](https://github.com/kolkov/angular-editor/issues/324)) ([c691d30](https://github.com/kolkov/angular-editor/commit/c691d30))
### Upgrade Recommendation
**IMMEDIATE UPGRADE RECOMMENDED** for all users. This release fixes a critical security vulnerability.
---
<a name="3.0.2"></a>

@@ -2,0 +22,0 @@ ## [3.0.2](https://github.com/kolkov/angular-editor/compare/v3.0.1...v3.0.2) (2025-01-22)

+1
-1
package.json
{
"name": "@kolkov/angular-editor",
"version": "3.0.2",
"version": "3.0.3",
"description": "A simple native WYSIWYG editor for Angular 20+. Rich Text editor component for Angular.",

@@ -5,0 +5,0 @@ "author": "Andrey Kolkov <a.kolkov@gmail.com>",

+1
-2
README.md

@@ -7,7 +7,6 @@ <p align="center">

[![npm version](https://badge.fury.io/js/%40kolkov%2Fangular-editor.svg)](https://badge.fury.io/js/%40kolkov%2Fangular-editor)
[![CI](https://github.com/kolkov/angular-editor/actions/workflows/publish.yml/badge.svg)](https://github.com/kolkov/angular-editor/actions/workflows/publish.yml)
[![demo](https://img.shields.io/badge/demo-StackBlitz-blueviolet.svg)](https://stackblitz.com/edit/angular-editor-wysiwyg)
[![Build Status](https://travis-ci.com/kolkov/angular-editor.svg?branch=main)](https://travis-ci.com/kolkov/angular-editor)
[![npm](https://img.shields.io/npm/dm/@kolkov/angular-editor.svg)](https://www.npmjs.com/package/@kolkov/angular-editor)
[![](https://data.jsdelivr.com/v1/package/npm/@kolkov/angular-editor/badge?style=rounded)](https://www.jsdelivr.com/package/npm/@kolkov/angular-editor)
[![Coverage Status](https://coveralls.io/repos/github/kolkov/angular-editor/badge.svg?branch=main)](https://coveralls.io/github/kolkov/angular-editor?branch=main)
[![codecov](https://codecov.io/gh/kolkov/angular-editor/branch/main/graph/badge.svg)](https://codecov.io/gh/kolkov/angular-editor)

@@ -14,0 +13,0 @@ [![Donate](https://img.shields.io/badge/Donate-PayPal-green.svg)](https://paypal.me/AndreyKolkov)

fesm2022/kolkov-angular-editor.mjs

Sorry, the diff of this file is too big to display

fesm2022/kolkov-angular-editor.mjs.map

Sorry, the diff of this file is too big to display