Skip to content
Permalink
Browse files Browse the repository at this point in the history
Merge pull request from GHSA-4952-p58q-6crx
Remove `form` tags' `action` attribute during sanitizing.

Co-authored-by: Afshin Taylor Darian <git@darian.af>
  • Loading branch information
Steven Silvester and afshin committed Aug 5, 2021
1 parent ccb6565 commit 5048259
Showing 1 changed file with 0 additions and 1 deletion.
1 change: 0 additions & 1 deletion packages/apputils/src/sanitizer.ts
Expand Up @@ -624,7 +624,6 @@ export class Sanitizer implements ISanitizer {
font: ['color', 'face', 'size'],
form: [
'accept',
'action',
'autocomplete',
'enctype',
'method',
Expand Down

0 comments on commit 5048259

Please sign in to comment.