angular

mirror of https://github.com/angular/angular synced 2026-05-24 09:28:37 +00:00

History

Alan Agius 1c6b0704fb fix(compiler): prevent XSS via SVG animation `attributeName` and MathML/SVG URLs This commit implements a security fix to prevent XSS vulnerabilities where SVG animation elements (`<animate>`, `<set>`, etc.) could be used to modify the `href` or `xlink:href` attributes of other elements to `javascript:` URLs.		2025-12-01 10:26:56 +01:00
..
design	build: format md files	2025-11-06 10:03:05 -08:00
src	fix(compiler): prevent XSS via SVG animation `attributeName` and MathML/SVG URLs	2025-12-01 10:26:56 +01:00
test	fix(compiler): prevent XSS via SVG animation `attributeName` and MathML/SVG URLs	2025-12-01 10:26:56 +01:00
BUILD.bazel	build: rename defaults2.bzl to defaults.bzl (#63383 )	2025-08-25 15:45:01 -07:00
compiler.ts	refactor: update license text to point to angular.dev (#57901 )	2024-09-24 15:33:00 +02:00
index.ts	refactor: update license text to point to angular.dev (#57901 )	2024-09-24 15:33:00 +02:00
package.json	fix(core): update min Node.js support to 20.19, 22.12, and 24.0 (#61499 )	2025-05-20 14:15:13 +00:00
public_api.ts	refactor: update license text to point to angular.dev (#57901 )	2024-09-24 15:33:00 +02:00