diff options
| author | Max Wu | 2019-04-14 12:07:16 -0400 |
|---|---|---|
| committer | Sheogorath | 2019-04-16 14:05:26 +0200 |
| commit | fb399ebe73950bec5403a4060a91ab9cfd90eb1a (patch) | |
| tree | 814c2794da5a6e95ed21ab019dcd3f3c0ea10115 /package.json | |
| parent | 074198f941ec7559d3555ed70ee6b42f6f56512f (diff) | |
Fix stored XSS in the graphviz error message rendering [Security Issue]
Signed-off-by: Max Wu <jackymaxj@gmail.com>
Co-Authored-By: Sheogorath <sheogorath@shivering-isles.com>
Diffstat (limited to '')
| -rw-r--r-- | package.json | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/package.json b/package.json index 331d42d4..c0d3cf91 100644 --- a/package.json +++ b/package.json @@ -37,6 +37,7 @@ "diff-match-patch": "git+https://github.com/hackmdio/diff-match-patch.git", "ejs": "^2.5.5", "emojify.js": "~1.1.0", + "escape-html": "^1.0.3", "express": ">=4.14", "express-session": "^1.14.2", "file-saver": "^1.3.3", |