angular-docs-cn/modules/@angular/platform-browser/test/security
Martin Probst 15ae710d22 feat(security): allow url(...) style values.
Allows sanitized URLs for CSS properties. These can be abused for information
leakage, but only if the CSS rules are already set up to allow for it. That is,
an attacker cannot cause information leakage without controlling the style rules
present, or a very particular setup.

Fixes #8514.
2016-05-17 11:23:31 +02:00
..
html_sanitizer_spec.ts feat(security): warn users when sanitizing in dev mode. 2016-05-09 16:46:31 +02:00
style_sanitizer_spec.ts feat(security): allow url(...) style values. 2016-05-17 11:23:31 +02:00
url_sanitizer_spec.ts feat(security): allow data: URLs for images and videos. 2016-05-17 10:57:14 +02:00