knockout-popup-template
Advanced tools
Comparing version 1.9.1 to 1.9.2
@@ -362,3 +362,15 @@ /* | ||
if (!src || src.indexOf(origin) === 0) { | ||
$(iframe).contents().each(callback); | ||
// try...catch to protect against foreign iframes throwing | ||
// "Failed to read the 'contentDocument' property from | ||
// 'HTMLIFrameElement': Blocked a frame with origin ... | ||
// from accessing a cross-origin frame." | ||
// Apparently that can happen despite the above check, | ||
// maybe because the iframe is missing a src attribute. | ||
var $contents; | ||
try { | ||
$contents = $(iframe).contents(); | ||
} catch (e) {} | ||
if ($contents) { | ||
$contents.each(callback); | ||
} | ||
} | ||
@@ -365,0 +377,0 @@ }); |
@@ -5,3 +5,3 @@ { | ||
"main": "knockout.popupTemplate.js", | ||
"version": "1.9.1", | ||
"version": "1.9.2", | ||
"contributors": [ | ||
@@ -8,0 +8,0 @@ { |
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
38359
628
1