Releases: slackhq/htmlsanitizer-hack
Releases · slackhq/htmlsanitizer-hack
Avoiding catastrophic backtracking
What's Changed
Full Changelog: 3.0.2...3.0.3
Contributors
JPolacek
Assets 2
Adding explicit error in Lexer.hack
We noticed that the preg_match_with_matches was erroring in Lexer.hack, but we weren't getting any information about what was happening/why. This new release adds an explicit error to handle the error passed through preg_match_with_matches_and_error.
Addressing sanitization of markdown in iFrame and updating HHVM version
Contributors
JPolacek
Assets 2
3.0 - Updating Policies and how to use them
What's Changed
- Updating to allow empty allow lists, and adding tests by @JPolacek in #38
- This update changes how policies are used in order to allow the use of empty policies and easier policy setup
Full Changelog: 2.4.1...3.0
Contributors
JPolacek
Assets 2
2.4.1 - Fixing null string comparison
Contributors
JPolacek
Assets 2
2.4 - Update error handling and support for latest version of HHVM
What's Changed
- Update Comment Removal by @JPolacek in #31
- Update error handling by @JPolacek in #35
- Reformat all the files that need it by @JPolacek in #36
- Support latest versions of HHVM by @muglug in #33
- Upstream changes, fixing string concatenation and more by @muglug in #34
Full Changelog: 2.3...2.4
Contributors
muglug and JPolacek
Assets 2
Support HHVM 4.108+ with HSL changes
The HSL no longer has Path - this release removes the dependency on it
Support HHVM 4.102
This release fixes a few typechecker and HHAST errors to pass tests on HHVM 4.102. No functional changes.
Add data-checked attribute for li tags
It adds support for data-checked attributes on li tags and includes some formatting changes.
This release is still targeting 4.56.