8000 we should sanitize v-html props in components or remove them · Issue #1930 · bootstrap-vue-next/bootstrap-vue-next · GitHub
[go: up one dir, main page]
Skip to content
we should sanitize v-html props in components or remove them #1930
New issue
New issue
Closed
#2346
Closed
we should sanitize v-html props in components or remove them#1930
#2346
Assignees
VividLemon
Labels
bugSomething isn't workingstaleThere has been no additional replies or questions and the thread is assumed closed
@xvaara

Description

@xvaara
xvaara
opened on May 31, 2024

There are many places that accept v-html input and the input isn't sanitized for xss attacks, we leave this to the user. I think we should remove all the v-html places since we have slots everywhere that the user can use to shoot them self in the foot.

Metadata

Metadata

Assignees

Labels

bugSomething isn't workingstaleThere has been no additional replies or questions and the thread is assumed closed

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions
    0