From 77ec41bb6f542077503106cacc1dbd28118c50b4 Mon Sep 17 00:00:00 2001
From: Felix Hammerl <fhammerl@thoughtworks.com>
Date: Wed, 24 Feb 2016 10:13:25 +0100
Subject: Issue #617: Sanitize received content

Sanitizes received HTML content with DOMPurify, making it safe
for displaying and templating. Sanitizes received plain text content
by encoding every single character as HTML entity.
---
 web-ui/bower.json | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'web-ui/bower.json')

diff --git a/web-ui/bower.json b/web-ui/bower.json
index 261f6e90..263ac2e4 100644
--- a/web-ui/bower.json
+++ b/web-ui/bower.json
@@ -15,7 +15,9 @@
     "utf8": "~2.1.1",
     "modernizr": "~2.8.3",
     "jquery-file-upload": "~9.11.2",
-    "jquery-ui": "~1.11.4"
+    "jquery-ui": "~1.11.4",
+    "DOMPurify": "~0.7.4",
+    "he": "~0.5.0"
   },
   "devDependencies": {
     "handlebars": "2.0.0",
-- 
cgit v1.2.3