strong-error-handler

Commit Graph

Author	SHA1	Message	Date
Raymond Feng	36d2b18a17	chore: update deps and drop Node 8.x support - Upgrade dependencies - Drop Node 8.x support as it has reached EOL BREAKING CHANGE: Node 8.x is no longer supported.	2020-06-23 10:05:24 -07:00
Zachery Metcalf	35328be26b	Escape strings in HTML output (XSS fix) Modify the template producing HTML error responses to correctly escape all strings that are possibly coming from the client making the request. Before this change, the error responses were vulnerable to XSS (cross-site scripting) attacks.	2018-01-25 14:16:24 +01:00
David Cheung	5646680e5e	HTML response for accepted headers	2016-06-14 12:04:32 -04:00

Author

SHA1

Message

Date

Raymond Feng

36d2b18a17

chore: update deps and drop Node 8.x support

- Upgrade dependencies
- Drop Node 8.x support as it has reached EOL

BREAKING CHANGE: Node 8.x is no longer supported.

2020-06-23 10:05:24 -07:00

Zachery Metcalf

35328be26b

Escape strings in HTML output (XSS fix)

Modify the template producing HTML error responses to correctly
escape all strings that are possibly coming from the client making the
request. Before this change, the error responses were vulnerable to XSS
(cross-site scripting) attacks.

2018-01-25 14:16:24 +01:00

David Cheung

5646680e5e

HTML response for accepted headers

2016-06-14 12:04:32 -04:00

3 Commits