Elgato_dark/angular
1
0
Fork 0
mirror of https://github.com/angular/angular synced 2026-05-24 09:28:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
angular/packages
History
Alan Agius 3c41e74fdd fix(localize): validate locale in getOutputPathFn to prevent path traversal 
The `localize-translate` CLI tool uses the `locale` field from translation files to expand the `{{LOCALE}}` placeholder in the output directory. It failed to sanitize `locale` input, allowing malicious translations to write files outside of the configured output directory.

This change mitigates this issue by combining.

Closes #67906

(cherry picked from commit 7871093822)
2026-03-30 12:15:31 +02:00
..
animations test: remove duplicate tests 2026-03-11 13:35:26 -07:00
benchpress refactor(benchpress): remove zone-based testing utilities 2026-02-09 07:55:12 -08:00
common test: construct local Date objects to fix timezone flakiness 2026-03-26 18:34:13 +01:00
compiler fix(compiler): prevent shimCssText from adding extra blank lines per CSS comment 2026-03-20 15:17:35 -07:00
compiler-cli fix(compiler-cli): prevent recursive scope checks for invalid NgModule imports 2026-03-27 16:10:08 +01:00
core build: update cross-repo angular dependencies 2026-03-27 14:00:33 +01:00
docs/di build: format md files 2025-11-06 10:03:05 -08:00
elements refactor(core): mark VERSION as @__PURE__ for better tree-shaking 2025-11-10 12:04:04 -08:00
examples feat(core): add support for TypeScript 6 2026-02-17 08:40:38 -08:00
forms docs: fix js doc of signal forms ignoreValidators option. 2026-03-23 11:21:21 -07:00
language-service refactor(language-service): Update getTcbNodesOfTemplateAtPosition to be usable without compiler (#67898) 2026-03-26 21:32:20 +00:00
localize fix(localize): validate locale in getOutputPathFn to prevent path traversal 2026-03-30 12:15:31 +02:00
misc/angular-in-memory-web-api build: update cross-repo angular dependencies 2026-01-26 23:51:05 +00:00
platform-browser Revert "fix(http): correctly cache blob responses in transfer cache (#67002)" 2026-03-04 17:19:14 +00:00
platform-browser-dynamic refactor(core): mark VERSION as @__PURE__ for better tree-shaking 2025-11-10 12:04:04 -08:00
platform-server build: consolidate domino bundling in platform-server 2026-03-25 13:31:10 -07:00
private/testing build: consolidate domino bundling in platform-server 2026-03-25 13:31:10 -07:00
router refactor: prepare for required changeDetection prop on G3. 2026-03-20 15:52:42 -07:00
service-worker refactor(service-worker): remove unnecessary cast in mock redirect check 2026-03-18 10:26:26 -07:00
ssr/docs build: add node type for api extraction 2026-02-11 13:57:58 -08:00
upgrade test: remove duplicate tests 2026-03-11 13:35:26 -07:00
zone.js build: update cross-repo angular dependencies 2026-03-25 12:59:42 -07:00
BUILD.bazel build(forms): expose signal forms compat package 2025-11-14 09:23:36 -08:00
circular-deps-test.conf.cjs build: use Node.js built-in TypeScript support for dev-infra scripts 2026-01-02 08:15:40 +01:00
empty.ts refactor: update license text to point to angular.dev (#57901) 2024-09-24 15:33:00 +02:00
goog.d.ts refactor: update license text to point to angular.dev (#57901) 2024-09-24 15:33:00 +02:00
license-banner.txt docs: update copyright year 2026-01-07 12:28:34 -05:00
package.json build: prepare for compiler-cli to be using ts_project (#61181) 2025-05-09 15:59:46 +00:00
README.md build: format md files 2025-11-06 10:03:05 -08:00
system.d.ts refactor: update packages/core:{core,src} to ts_project (#61275) 2025-05-14 12:01:51 +00:00
tsconfig-build.json Revert "refactor(compiler-cli): remove deep imports from compiler-cli (#64732)" 2025-11-06 13:09:01 -08:00
tsconfig-legacy-saucelabs.json feat(core): support TypeScript 5.5 (#56096) 2024-05-29 15:33:33 +02:00
tsconfig-test.json
tsconfig.json feat(compiler-cli): enable type checking of host bindings by default (#63654) 2025-09-09 14:34:29 -07:00
tsec-exemption.json
types.d.ts build: move private testing helpers outside platform-browser/testing (#61472) 2025-05-20 10:00:43 +00:00

README.md

Angular

The sources for this package are in the main Angular repo. Please file issues and pull requests against that repo.

Usage information and reference details can be found in Angular documentation.

License: MIT