• Home
  • Features
  • Pricing
  • Docs
  • Announcements
  • Sign In

coreui / coreui-pro / 28854549464

Builds Branch Commit Type Ran Committer Via Coverage
28854549464 dependabot/github_actions/github-actions-7e54f4a74d Merge 314d35c14 into bc4daf1cd Pull #591 07 Jul 2026 09:06AM UTC web-flow github
94.63
28760966205 main fix(pickers,RangeSlider,Autocomplete): route config strings through the sanitizer (#596) Several developer-config strings were written to innerHTML while skipping the component's own sanitizer/escaping: - RangeSlider tooltip update path (init pat... push 06 Jul 2026 12:54AM UTC web-flow github
94.65
28760810335 main fix(Rating,RangeSlider,Calendar,DateRangePicker): close sanitize bypass via data attributes (#595) _getConfig stripped sanitize/allowList/sanitizeFn from the element's data attributes, but then called _mergeConfigObj(config, this._element), which... push 06 Jul 2026 12:49AM UTC web-flow github
94.65
28760480938 main fix(Chip): sanitize selected/remove icons before injection (#594) selectedIcon and removeIcon (settable via data-coreui-* attributes) were written to innerHTML with no sanitizer, unlike rating.js. Add sanitize / allowList / sanitizeFn options (SV... push 06 Jul 2026 12:37AM UTC web-flow github
94.63
28760374489 fix/chip-icon-sanitizer Merge 68897ab77 into db9c41287 Pull #594 06 Jul 2026 12:34AM UTC web-flow github
94.62
28759634324 main fix(Autocomplete): escape option labels in highlight to prevent XSS (#593) Option labels passed to highlightOptionsOnSearch were wrapped in <strong> and written to innerHTML without escaping, so external-search results containing markup (e.g. <im... push 06 Jul 2026 12:09AM UTC web-flow github
94.64
28759380993 fix/sanitizer-bypass-config-strings Merge f8e56d8f7 into 91de7b94b Pull #596 06 Jul 2026 12:00AM UTC web-flow github
94.62
28759335552 main refactor(util/sanitizer): add shared escapeHtml and SVGAllowlist (#597) Introduce two reusable primitives next to sanitizeHtml/DefaultAllowlist so components stop defining their own copies: - escapeHtml(text) — HTML-escape a string (attributes an... push 05 Jul 2026 11:58PM UTC web-flow github
94.6
28759269598 fix/sanitizer-bypass-config-strings Merge 320a5174b into 9e798ff1a Pull #596 05 Jul 2026 11:56PM UTC web-flow github
94.61
28759236736 fix/chip-icon-sanitizer Merge b275f428f into 9e798ff1a Pull #594 05 Jul 2026 11:54PM UTC web-flow github
94.6
28759013071 refactor/shared-sanitizer-utils Merge 9e798ff1a into b24807de7 Pull #597 05 Jul 2026 11:46PM UTC web-flow github
94.6
28754865316 fix/sanitizer-bypass-config-strings Merge cf283f182 into b24807de7 Pull #596 05 Jul 2026 09:06PM UTC web-flow github
94.61
28754855121 fix/chip-icon-sanitizer Merge 82a38c9e4 into b24807de7 Pull #594 05 Jul 2026 09:06PM UTC web-flow github
94.61
28754794030 fix/autocomplete-highlight-xss Merge 6424af567 into b24807de7 Pull #593 05 Jul 2026 09:04PM UTC web-flow github
94.68
28742968544 dependabot/github_actions/github-actions-7e54f4a74d Merge 7bf26573a into b24807de7 Pull #591 05 Jul 2026 01:52PM UTC web-flow github
94.6
  • ← Previous
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • Next →
  • Back to Repo
STATUS · Troubleshooting · Open an Issue · Sales · Support · CAREERS · ENTERPRISE · START FREE · SCHEDULE DEMO
ANNOUNCEMENTS · TWITTER · TOS & SLA · Supported CI Services · What's a CI service? · Automated Testing

© 2026 Coveralls, Inc