You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I noticed that the project is currently using an outdated version (v3.0.8) of the DOMPurify library, which is affected by a known vulnerability CVE-2024-45801. The latest version of DOMPurify (v3.1.6) includes a patch for this vulnerability, which addresses a security concern regarding XSS bypasses.
To maintain the security and integrity of the project, I recommend updating DOMPurify to version 3.1.6 , which includes this fix.
You can find more details about the vulnerability here: CVE-2024-45801.
Thank you for your attention to this issue and will raise a PR to update the version.
The text was updated successfully, but these errors were encountered:
I noticed that the project is currently using an outdated version (v3.0.8) of the DOMPurify library, which is affected by a known vulnerability CVE-2024-45801. The latest version of DOMPurify (v3.1.6) includes a patch for this vulnerability, which addresses a security concern regarding XSS bypasses.
To maintain the security and integrity of the project, I recommend updating DOMPurify to version 3.1.6 , which includes this fix.
You can find more details about the vulnerability here: CVE-2024-45801.
Thank you for your attention to this issue and will raise a PR to update the version.
The text was updated successfully, but these errors were encountered: