Enhance content sanitization across various components by integrating 'dompurify' for improved security and update package dependencies in package.json and package-lock.json.

2025-12-20 10:49:20 +01:00
parent acfa842131
commit 316cce1b26
49 changed files with 349 additions and 23 deletions
--- a/scripts/smoke-test.js
+++ b/scripts/smoke-test.js
@@ -2,6 +2,8 @@ import { execSync } from 'child_process'
 import fs from 'fs'
 import path from 'path'

+// nosemgrep: javascript.lang.security.detect-child-process.detect-child-process
+// This is a development-only smoke test script, cmd is hardcoded, not user input
 function run(cmd) {
  console.log('> ', cmd)
  try { const out = execSync(cmd, { stdio: 'pipe' }).toString(); console.log(out); return out } catch (e) { console.error('ERROR:', e.message); return null }