Give users a note on security issues (XSS)

Question

Give users a note on security issues (XSS)

Closed this issue 7 months ago · 2 comments

js-bbcode-parser does not purify the user input for xss so it might be a good idea to give the person using the library a short note (e.g include it in the README)

Another idea would be to implement such checks into the library

Answer 1 · 2022-01-27T12:28:04.000Z

Might also mention the library DomPurify, its easy to import and should be secure enough

Answer 2 · 2024-03-03T16:02:26.000Z

added this information to the README in version v5.0.3

thx. for your hint :)