sanitize-html v2.3.1 Release Notes
Release Date: 2021-01-22 // over 3 years ago-
- 📜 Uses the standard WHATWG URL parser to stop IDNA (Internationalized Domain Name) attacks on the iframe hostname validator. Thanks to Ron Masas of Checkmarx for pointing out the issue and suggesting the use of the WHATWG parser.