You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Mar 29, 2021. It is now read-only.
Issue of user provided input containing xpath for undesirable, e.g. putting a header inside the body. It seems like we'd want to whitelist child elements.
need a way of escaping user provided data of instantiable tags for security.
This should prevent any instantiantiabled tag from being provided.
e.g. if there is an 'if' module then it should strip if tags.
The text was updated successfully, but these errors were encountered: