Fix severe vulnerability in case of a malicious Piped/YouTube server.

2025-12-30 16:32:39 +00:00 · 2021-06-07 00:42:03 +05:30
parent 20ddaab9e3
commit acf81f386f
5 changed files with 19 additions and 6 deletions
--- a/package.json
+++ b/package.json
@@ -14,6 +14,7 @@
        "@fortawesome/vue-fontawesome": "^3.0.0-4",
        "core-js": "^3.13.1",
        "css-loader": "^5.2.6",
+        "dompurify": "^2.2.9",
        "hotkeys-js": "^3.8.5",
        "register-service-worker": "^1.7.1",
        "shaka-player": "3.1.0",