validator - npm Package Compare versions

Comparing version 0.4.4 to 0.4.5

lib/xss.js

@@ -131,3 +131,3 @@ //This module is adapted from the CodeIgniter framework
     //handler and anything up to the closing >, but it's unlikely to be a problem.
-    event_handlers = ['[^a-z_\-]on\\w*'];
+    var event_handlers = ['[^a-z_\-]on\\w*'];
 
@@ -147,3 +147,3 @@ //Adobe Photoshop puts XML metadata into JFIF images, including namespacing,
     //Becomes: <blink>
-    naughty = 'alert|applet|audio|basefont|base|behavior|bgsound|blink|body|embed|expression|form|frameset|frame|head|html|ilayer|iframe|input|isindex|layer|link|meta|object|plaintext|style|script|textarea|title|video|xml|xss';
+    var naughty = 'alert|applet|audio|basefont|base|behavior|bgsound|blink|body|embed|expression|form|frameset|frame|head|html|ilayer|iframe|input|isindex|layer|link|meta|object|plaintext|style|script|textarea|title|video|xml|xss';
     str = str.replace(new RegExp('<(/*\\s*)('+naughty+')([^><]*)([><]*)', 'gi'), function(m, a, b, c, d) {
@@ -150,0 +150,0 @@ return '&lt;' + a + b + c + d.replace('>','&gt;').replace('<','&lt;');

package.json

 { "name"          : "validator",
   "description"   : "Data validation, filtering and sanitization for node.js",
-  "version"       : "0.4.4",
+  "version"       : "0.4.5",
   "homepage"      : "http://github.com/chriso/node-validator",
@@ -5,0 +5,0 @@ "keywords"      : ["validator", "validation", "assert", "params", "sanitization", "xss", "entities", "sanitize", "sanitisation", "input"],

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

107650

increased by0.01%

No dependency changes