@locker/html-sanitizer - npm Package Compare versions

Comparing version 0.12.2 to 0.12.3

dist/index.cjs.js

@@ -404,2 +404,2 @@ /**
 exports.svgSanitizer = svgSanitizer;
-/** version: 0.12.2 */
+/** version: 0.12.3 */

dist/index.js

@@ -391,2 +391,2 @@ /**
 export { config as CONFIG, blobSanitizer, sanitize, sanitizeSvgHrefValue, sanitizer, svgSanitizer };
-/** version: 0.12.2 */
+/** version: 0.12.3 */

package.json

 {
     "name": "@locker/html-sanitizer",
-    "version": "0.12.2",
+    "version": "0.12.3",
     "license": "Salesforce Developer Agreement",
@@ -18,15 +18,12 @@ "author": "Salesforce UI Security Team",
     "scripts": {
-        "build": "tsc --emitDeclarationOnly && rollup -c .rolluprc.cjs",
+        "build": "tsc --project tsconfig.types.json && rollup --config .rolluprc.cjs",
         "clean": "locker-trash dist/ types/"
     },
     "dependencies": {
-        "@locker/shared": "0.12.2",
-        "@locker/shared-dom": "0.12.2",
+        "@locker/shared": "0.12.3",
+        "@locker/shared-dom": "0.12.3",
         "@types/dompurify": "^2.0.0",
-        "dompurify": "2.0.8"
+        "dompurify": "2.2.2"
     },
-    "devDependencies": {
-        "typescript": "3.8.3"
-    },
-    "gitHead": "738fe1b33d349d389394370359044c1d5ee968c4"
+    "gitHead": "04a89b8ef9516c8ebc5f38a1bb2d93b04deba348"
 }

types/additional-attributes.d.ts

 export declare const ariaAttributes: string[];
+//# sourceMappingURL=additional-attributes.d.ts.map

types/allowed-tags.d.ts

 export declare const htmlTags: string[];
 export declare const svgTags: string[];
+//# sourceMappingURL=allowed-tags.d.ts.map

types/config.d.ts

@@ -8,1 +8,2 @@ import { Config } from 'dompurify';
 export declare const DOM_SVG: Config;
+//# sourceMappingURL=config.d.ts.map

types/dompurify-wrapper.d.ts

@@ -5,1 +5,2 @@ import { DOMPurifyI, Config, HookName, HookEvent } from 'dompurify';
 export declare function sanitizer(config: Config, hooks: Hooks): DOMPurifyI;
+//# sourceMappingURL=dompurify-wrapper.d.ts.map

types/hooks/svg-sanitize-href-attribute.d.ts

 import { SanitizeAttributeHookEvent } from 'dompurify';
 export declare function sanitizeSvgHrefValue(value: string): string;
 export declare function sanitizeHrefAttributeHook(node: Node, data: SanitizeAttributeHookEvent): SanitizeAttributeHookEvent;
+//# sourceMappingURL=svg-sanitize-href-attribute.d.ts.map

types/index.d.ts

@@ -9,1 +9,2 @@ import { DOMPurifyI } from 'dompurify';
 export declare function sanitize(dirty: string): string;
+//# sourceMappingURL=index.d.ts.map

Fixed alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

28716

increased by7.5%

Dev dependency count

0

decreased by-100%

Number of package files

17

increased by54.55%

Number of medium supply chain risk alerts

0

decreased by-100%

Dependency changes

• + Added@locker/shared@0.12.3(transitive)

• + Added@locker/shared-dom@0.12.3(transitive)

• + Addeddompurify@2.2.2(transitive)

• - Removed@locker/shared@0.12.2(transitive)

• - Removed@locker/shared-dom@0.12.2(transitive)

• - Removeddompurify@2.0.8(transitive)

• Updated@locker/shared@0.12.3

• Updated@locker/shared-dom@0.12.3

• Updateddompurify@2.2.2