Update sanitize-html to version 1.14.1 🚀 #7846
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Hello lovely humans,
sanitize-html just published its new version 1.14.1.
This version is not covered by your current version range.
Without accepting this pull request your project will work just like it did before. There might be a bunch of new features, fixes and perf improvements that the maintainers worked on for you though.
I recommend you look into these changes and try to get onto the latest version of sanitize-html.
Given that you have a decent test suite, a passing build is a strong indicator that you can take advantage of these changes by merging the proposed change into your project. Otherwise this branch is a great starting point for you to work on the update.
Do you have any ideas how I could improve these pull requests? Did I report anything you think isn’t right?
Are you unsure about how things are supposed to work?
There is a collection of frequently asked questions and while I’m just a bot, there is a group of people who are happy to teach me new things. Let them know.
Good luck with your project ✨
You rock!
🌴
The new version differs by 6 commits .
fb89a71
1.14.1: documented
allowProtocolRelative
option. No code changes from 1.14.0, released a few moments ago.4c229fb
1.14.0: the new
allowProtocolRelative
option, which is set totrue
by default, allows you to decline to accept URLs that start with//
and thus point to a different host using the current protocol. If you do not want to permit this, set this option tofalse
. This is fully backwards compatible because the default behavior is to allow them. Thanks to Luke Bernard.e22f2e2
Merge pull request #137 from lukebarnard1/allow-protocol-relative
1d37bf9
Correct no-scheme handling (= not nasty)
1bcbcea
Only URLs starting with // are protocol-relative
3a2dd6f
Add option to allow empty URL schemes
See the full diff.
This pull request was created by greenkeeper.io.
Tired of seeing this sponsor message? ⚡
greenkeeper upgrade