sanitize-html v2.7.1 Release Notes

Release Date: 2022-07-20 // 3 months ago
    • ๐Ÿ‘ Protocol-relative URLs are properly supported for script tags. Thanks to paweljq.
    • ๐Ÿ”’ A denial-of-service vulnerability has been fixed by replacing global regular expression replacement logic for comment removal with a new implementation. Thanks to Nariyoshi Chida of NTT Security Japan for pointing out the issue.

Previous changes from v2.7.0

    • ๐Ÿ‘ Allows a more sensible set of default attributes on <img /> tags. Thanks to Zade Viggers.