Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

[Issue] Update live-edit.ts DOM Text Interpreted As HTML #893

Open
3 of 5 tasks
m2-assistant bot opened this issue Apr 4, 2025 · 2 comments · May be fixed by #883
Open
3 of 5 tasks

[Issue] Update live-edit.ts DOM Text Interpreted As HTML #893

m2-assistant bot opened this issue Apr 4, 2025 · 2 comments · May be fixed by #883
Labels
Triage: Dev.Experience Issue related to Developer Experience and needs help with Triage to Confirm or Reject it

Comments

@m2-assistant
Copy link

m2-assistant bot commented Apr 4, 2025

This issue is automatically created based on existing pull request: #883: Update live-edit.ts DOM Text Interpreted As HTML

Description (*)

Here innerText can be used it will avoid the risk of HTML injection, as these properties automatically escape any HTML special characters in the provided text. This helps prevent cross-site scripting (XSS) vulnerabilities by treating the input as plain text rather than interpreted HTML.

Checklist

  • Pull request has a meaningful description of its purpose
  • All commits are accompanied by meaningful commit messages
  • All new or changed code is covered with unit/integration tests (if applicable)
  • README.md files for modified modules are updated and included in the pull request if any README.md predefined sections require an update
  • All automated tests passed successfully (all builds are green)
@m2-assistant m2-assistant bot linked a pull request Apr 4, 2025 that will close this issue
Open
6 tasks
@engcom-Hotel
Copy link
Collaborator

@adobe export issue to Jira project PB

@github-jira-sync-bot
Copy link

✅ Jira issue https://jira.corp.adobe.com/browse/PB-1607 is successfully created for this GitHub issue.

@engcom-November engcom-November added the Triage: Dev.Experience Issue related to Developer Experience and needs help with Triage to Confirm or Reject it label Apr 7, 2025
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
Triage: Dev.Experience Issue related to Developer Experience and needs help with Triage to Confirm or Reject it
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update live-edit.ts DOM Text Interpreted As HTML Shivam7-1/magento2-page-builder
3 participants
@engcom-Hotel @engcom-November @github-jira-sync-bot