Name: DOMPurify
Availability: InStock

Dec 8, 2025

Updated ADD_FORBID_CONTENTS setting to extend default list, thanks @MariusRumpf
Updated the ESM import syntax to be more correct, thanks @binhpv

Oct 13, 2025

Added the SVG mask-type attribute to default allow-list, thanks @prasadrajandran
Added support for ADD_ATTR and ADD_TAGS to accept functions, thanks @nelstrom
Fixed an issue with the slot element being in both SVG and HTML allow-list, thanks @Wim-Valgaeren

Sep 17, 2025

Added new attributes and elements to default allow-list, thanks @elrion018
Added tagName parameter to custom element attributeNameCheck, thanks @nelstrom
Added better check for animated href attributes, thanks @llamakko
Updated and improved the bundled types, thanks @ssi02014
Updated several tests to better align with new browser encoding behaviors
Improved the handling of...

May 19, 2025

Fixed several typos and removed clutter from our documentation, thanks @Rotzbua
Added matrix: as an allowed URI scheme, thanks @kleinesfilmroellchen
Added better config hardening against prototype pollution, thanks @EffectRenan
Added better handling of attribute removal, thanks @michalnieruchalski-tiugo
Added better configuration for aggressive mXSS scrubbing behavior, thanks @Bry...

Apr 3, 2025

Added a check to the mXSS detection regex to be more strict, thanks @masatokinugawa
Added ESM type imports in source, removes patch function, thanks @donmccurdy
Added script to verify various TypeScript configurations, thanks @reduckted
Added more modern browsers to the Karma launchers list
Added Node 23.x to tested runtimes, removed Node 17.x
Fixed the generation of source map...

DOMPurify

Related Projects