|
0fab9b1d12
|
Security fix v0.20.4: Fix prototype pollution and ReDoS vulnerabilities
- Fix prototype pollution in parsexmltag/parsexmltagraw (GHSA-4r6h-8v6p-xvw6)
- Fix ReDoS vulnerability in tagregex1 (GHSA-5pgg-2g8v-p4x9)
- Add isSafeProperty validation function to prevent dangerous property assignments
- Update version to 0.20.4
- Add comprehensive security documentation
Addresses critical security vulnerabilities reported in GitHub Security Advisories.
Maintains full backward compatibility while eliminating security risks.
|
2025-06-26 19:16:18 -04:00 |
|