angular/packages/compiler-cli
Alan Agius 78fd159b78 fix(compiler): prevent XSS via SVG animation attributeName and MathML/SVG URLs
This commit implements a security fix to prevent XSS vulnerabilities where SVG animation elements (`<animate>`, `<set>`, etc.) could be used to modify the `href` or `xlink:href` attributes of other elements to `javascript:` URLs.

(cherry picked from commit 1c6b0704fb)
2025-12-01 10:27:00 +01:00
..
linker refactor(compiler): remove unused code 2025-11-11 10:04:32 -08:00
private Revert "refactor(compiler-cli): remove deep imports from compiler-cli (#64732)" 2025-11-06 13:09:27 -08:00
src fix(compiler-cli): escape angular control flow in jsdoc 2025-11-25 11:33:29 -05:00
test fix(compiler): prevent XSS via SVG animation attributeName and MathML/SVG URLs 2025-12-01 10:27:00 +01:00
BUILD.bazel Revert "refactor(compiler-cli): remove deep imports from compiler-cli (#64732)" 2025-11-06 13:09:27 -08:00
esbuild.config.js build: use esbuild from aspect rules (#62568) 2025-07-10 13:45:15 -07:00
index.ts refactor(compiler-cli): Remove deep imports of compiler-cli in angular/core 2025-10-28 15:58:59 +01:00
package.json refactor(compiler-cli): Remove deep imports of compiler-cli in angular/core 2025-10-28 15:58:59 +01:00
tsconfig-test.json build: prepare for compiler-cli to be using ts_project (#61181) 2025-05-09 15:59:46 +00:00
tsconfig.json build: prepare for compiler-cli to be using ts_project (#61181) 2025-05-09 15:59:46 +00:00