@locker/html-sanitizer - npm Package Compare versions

Comparing version 0.19.7 to 0.19.8

dist/index.cjs.js

@@ -20,3 +20,3 @@ /*!
 var createDOMPurify__default$LWS = /*#__PURE__*/_interopDefaultLegacy$LWS(createDOMPurify$LWS);
-const ariaAttributes$LWS = ['aria-activedescendant', 'aria-atomic', 'aria-autocomplete', 'aria-busy', 'aria-checked', 'aria-controls', 'aria-describedby', 'aria-disabled', 'aria-readonly', 'aria-dropeffect', 'aria-expanded', 'aria-flowto', 'aria-grabbed', 'aria-haspopup', 'aria-hidden', 'aria-disabled', 'aria-invalid', 'aria-label', 'aria-labelledby', 'aria-level', 'aria-live', 'aria-multiline', 'aria-multiselectable', 'aria-orientation', 'aria-owns', 'aria-posinset', 'aria-pressed', 'aria-readonly', 'aria-relevant', 'aria-required', 'aria-selected', 'aria-setsize', 'aria-sort', 'aria-valuemax', 'aria-valuemin', 'aria-valuenow', 'aria-valuetext', 'role', 'target'];
+const additionalAttributes$LWS = ['role', 'target'];
 const htmlTags$LWS = ['a', 'abbr', 'acronym', 'address', 'area', 'article', 'aside', 'audio', 'b', 'bdi', 'bdo', 'big', 'blockquote', 'body', 'br', 'button', 'caption', 'canvas', 'center', 'cite', 'code', 'col', 'colgroup', 'command', 'datalist', 'dd', 'del', 'details', 'dfn', 'dir', 'div', 'dl', 'dt', 'em', 'fieldset', 'figure', 'figcaption', 'footer', 'form', 'h1', 'h2', 'h3', 'h4', 'h5', 'h6', 'head', 'header', 'hgroup', 'hr', 'i', 'iframe', 'img', 'input', 'ins', 'keygen', 'kbd', 'label', 'legend', 'li', 'map', 'mark', 'menu', 'meter', 'nav', 'ol', 'optgroup', 'option', 'output', 'p', 'pre', 'progress', 'q', 'rp', 'rt', 'ruby', 's', 'samp', 'section', 'select', 'small', 'source', 'span', 'strike', 'strong', 'style', 'sub', 'summary', 'sup', 'table', 'tbody', 'td', 'textarea', 'tfoot', 'th', 'thead', 'time', 'tr', 'track', 'tt', 'u', 'ul', 'var', 'video', 'wbr'];
@@ -36,3 +36,3 @@ const svgTags$LWS = ['svg', 'a', 'altglyph', 'altglyphdef', 'altglyphitem', 'animatecolor', 'animatemotion', 'animatetransform', 'audio', 'canvas', 'circle', 'clippath', 'defs', 'desc', 'ellipse', 'filter', 'font', 'g', 'glyph', 'glyphref', 'hkern', 'image', 'line', 'lineargradient', 'marker', 'mask', 'mpath', 'path', 'pattern', 'polygon', 'polyline', 'radialgradient', 'rect', 'stop', 'switch', 'symbol', 'text', 'textpath', 'title', 'tref', 'tspan', 'video', 'view', 'vkern', 'use'];
 const NODE_ALL_IN_PLACE$LWS = {
-  ADD_ATTR: shared$LWS.shallowCloneArray(ariaAttributes$LWS),
+  ADD_ATTR: shared$LWS.shallowCloneArray(additionalAttributes$LWS),
   // Add '#document-fragment' to ALLOWED_TAGS to avoid a forbidden root node
@@ -50,3 +50,3 @@ // exception.
 const NODE_SVG$LWS = {
-  ADD_ATTR: shared$LWS.shallowCloneArray(ariaAttributes$LWS),
+  ADD_ATTR: shared$LWS.shallowCloneArray(additionalAttributes$LWS),
   ALLOWED_TAGS: shared$LWS.shallowCloneArray(svgTags$LWS),
@@ -61,3 +61,3 @@ CUSTOM_ELEMENT_HANDLING: shared$LWS.ObjectAssign({}, CUSTOM_ELEMENT_HANDLING$LWS),
 const STRING_BLOB_HTML$LWS = {
-  ADD_ATTR: shared$LWS.shallowCloneArray(ariaAttributes$LWS),
+  ADD_ATTR: shared$LWS.shallowCloneArray(additionalAttributes$LWS),
   ALLOWED_TAGS: shared$LWS.ReflectApply(shared$LWS.ArrayProtoFilter, allTags$LWS, [tag$LWS => tag$LWS !== 'iframe']),
@@ -273,2 +273,2 @@ CUSTOM_ELEMENT_HANDLING: shared$LWS.ObjectAssign({}, CUSTOM_ELEMENT_HANDLING$LWS),
 exports.uponSanitizeAttribute = uponSanitizeAttribute$LWS;
-/*! version: 0.19.7 */
+/*! version: 0.19.8 */

dist/index.mjs.js

@@ -9,3 +9,3 @@ /*!
 import { trusted as trusted$LWS } from '@locker/trusted-types';
-const ariaAttributes$LWS = ['aria-activedescendant', 'aria-atomic', 'aria-autocomplete', 'aria-busy', 'aria-checked', 'aria-controls', 'aria-describedby', 'aria-disabled', 'aria-readonly', 'aria-dropeffect', 'aria-expanded', 'aria-flowto', 'aria-grabbed', 'aria-haspopup', 'aria-hidden', 'aria-disabled', 'aria-invalid', 'aria-label', 'aria-labelledby', 'aria-level', 'aria-live', 'aria-multiline', 'aria-multiselectable', 'aria-orientation', 'aria-owns', 'aria-posinset', 'aria-pressed', 'aria-readonly', 'aria-relevant', 'aria-required', 'aria-selected', 'aria-setsize', 'aria-sort', 'aria-valuemax', 'aria-valuemin', 'aria-valuenow', 'aria-valuetext', 'role', 'target'];
+const additionalAttributes$LWS = ['role', 'target'];
 const htmlTags$LWS = ['a', 'abbr', 'acronym', 'address', 'area', 'article', 'aside', 'audio', 'b', 'bdi', 'bdo', 'big', 'blockquote', 'body', 'br', 'button', 'caption', 'canvas', 'center', 'cite', 'code', 'col', 'colgroup', 'command', 'datalist', 'dd', 'del', 'details', 'dfn', 'dir', 'div', 'dl', 'dt', 'em', 'fieldset', 'figure', 'figcaption', 'footer', 'form', 'h1', 'h2', 'h3', 'h4', 'h5', 'h6', 'head', 'header', 'hgroup', 'hr', 'i', 'iframe', 'img', 'input', 'ins', 'keygen', 'kbd', 'label', 'legend', 'li', 'map', 'mark', 'menu', 'meter', 'nav', 'ol', 'optgroup', 'option', 'output', 'p', 'pre', 'progress', 'q', 'rp', 'rt', 'ruby', 's', 'samp', 'section', 'select', 'small', 'source', 'span', 'strike', 'strong', 'style', 'sub', 'summary', 'sup', 'table', 'tbody', 'td', 'textarea', 'tfoot', 'th', 'thead', 'time', 'tr', 'track', 'tt', 'u', 'ul', 'var', 'video', 'wbr'];
@@ -25,3 +25,3 @@ const svgTags$LWS = ['svg', 'a', 'altglyph', 'altglyphdef', 'altglyphitem', 'animatecolor', 'animatemotion', 'animatetransform', 'audio', 'canvas', 'circle', 'clippath', 'defs', 'desc', 'ellipse', 'filter', 'font', 'g', 'glyph', 'glyphref', 'hkern', 'image', 'line', 'lineargradient', 'marker', 'mask', 'mpath', 'path', 'pattern', 'polygon', 'polyline', 'radialgradient', 'rect', 'stop', 'switch', 'symbol', 'text', 'textpath', 'title', 'tref', 'tspan', 'video', 'view', 'vkern', 'use'];
 const NODE_ALL_IN_PLACE$LWS = {
-  ADD_ATTR: shallowCloneArray$LWS(ariaAttributes$LWS),
+  ADD_ATTR: shallowCloneArray$LWS(additionalAttributes$LWS),
   // Add '#document-fragment' to ALLOWED_TAGS to avoid a forbidden root node
@@ -39,3 +39,3 @@ // exception.
 const NODE_SVG$LWS = {
-  ADD_ATTR: shallowCloneArray$LWS(ariaAttributes$LWS),
+  ADD_ATTR: shallowCloneArray$LWS(additionalAttributes$LWS),
   ALLOWED_TAGS: shallowCloneArray$LWS(svgTags$LWS),
@@ -50,3 +50,3 @@ CUSTOM_ELEMENT_HANDLING: ObjectAssign$LWS({}, CUSTOM_ELEMENT_HANDLING$LWS),
 const STRING_BLOB_HTML$LWS = {
-  ADD_ATTR: shallowCloneArray$LWS(ariaAttributes$LWS),
+  ADD_ATTR: shallowCloneArray$LWS(additionalAttributes$LWS),
   ALLOWED_TAGS: ReflectApply$LWS(ArrayProtoFilter$LWS, allTags$LWS, [tag$LWS => tag$LWS !== 'iframe']),
@@ -258,2 +258,2 @@ CUSTOM_ELEMENT_HANDLING: ObjectAssign$LWS({}, CUSTOM_ELEMENT_HANDLING$LWS),
 export { blobSanitizer$LWS as blobSanitizer, getSanitizerForConfig$LWS as getSanitizerForConfig, sanitizeSvgHref$LWS as sanitizeSvgHref, sanitizeSvgTextReturnDOM$LWS as sanitizeSvgTextReturnDOM, uponSanitizeAttribute$LWS as uponSanitizeAttribute };
-/*! version: 0.19.7 */
+/*! version: 0.19.8 */

package.json

 {
     "name": "@locker/html-sanitizer",
-    "version": "0.19.7",
+    "version": "0.19.8",
     "license": "SEE LICENSE IN LICENSE.txt",
@@ -19,6 +19,6 @@ "author": "Salesforce UI Security Team",
     "dependencies": {
-        "@locker/shared": "0.19.7",
-        "@locker/shared-dom": "0.19.7",
-        "@locker/shared-url": "0.19.7",
-        "@locker/trusted-types": "0.19.7",
+        "@locker/shared": "0.19.8",
+        "@locker/shared-dom": "0.19.8",
+        "@locker/shared-url": "0.19.8",
+        "@locker/trusted-types": "0.19.8",
         "@types/dompurify": "3.0.2",
@@ -25,0 +25,0 @@ "dompurify": "3.0.3"

No alert changes

Worsened metrics

Total package byte prevSize

41138

decreased by-2.85%

Lines of code

598

decreased by-0.66%

Dependency changes

• + Added@locker/shared@0.19.8(transitive)

• + Added@locker/shared-dom@0.19.8(transitive)

• + Added@locker/shared-url@0.19.8(transitive)

• + Added@locker/trusted-types@0.19.8(transitive)

• - Removed@locker/shared@0.19.7(transitive)

• - Removed@locker/shared-dom@0.19.7(transitive)

• - Removed@locker/shared-url@0.19.7(transitive)

• - Removed@locker/trusted-types@0.19.7(transitive)

• Updated@locker/shared@0.19.8

• Updated@locker/shared-dom@0.19.8

• Updated@locker/shared-url@0.19.8

• Updated@locker/trusted-types@0.19.8