All Versions
102
Latest Version
Avg Release Cycle
38 days
Latest Release
409 days ago

Changelog History
Page 8

  • v1.8.0 Changes

    • transformTags now accepts the * wildcard to transform all tags. Thanks to Jamy Timmermans.

    • Text that has been modified by transformTags is then passed through textFilter. Thanks to Pavlo Yurichuk.

    • 👀 Content inside textarea is discarded if textarea is not allowed. I don't know why it took me this long to see that this is just common sense. Thanks to David Frank.

  • v1.7.2 Changes

    ✂ removed array-includes dependency in favor of indexOf, which is a little more verbose but slightly faster and doesn't require a shim. Thanks again to Joseph Dykstra.

  • v1.7.1 Changes

    ✂ removed lodash dependency, adding lighter dependencies and polyfills in its place. Thanks to Joseph Dykstra.

  • v1.7.0 Changes

    introduced allowedSchemesByTag option. Thanks to Cameron Will.

  • v1.6.1 Changes

    the string 'undefined' (as opposed to undefined) is perfectly valid text and shouldn't be expressly converted to the empty string.

  • v1.6.0 Changes

    ➕ added textFilter option. Thanks to Csaba Palfi.

  • v1.5.3 Changes

    💅 do not escape special characters inside a script or style element, if they are allowed. This is consistent with the way browsers parse them; nothing closes them except the appropriate closing tag for the entire element. Of course, this only comes into play if you actually choose to allow those tags. Thanks to aletorrado.

  • v1.5.2 Changes

    guard checks for allowed attributes correctly to avoid an undefined property error. Thanks to Zeke.

  • v1.5.1 Changes

    ⚡️ updated to htmlparser2 1.8.x. Started using the decodeEntities option, which allows us to pass our filter evasion tests without the need to recursively invoke the filter.

  • v1.5.0 Changes

    👌 support for * wildcards in allowedAttributes. With tests. Thanks to Calvin Montgomery.