github/svgedit
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
11baad04025664abee66c3cc6d5515dac568dd19
svgedit/editor/xdomain-svgedit-config-es.js
Brett Zamir 11baad0402 - Security fix/Breaking change (Imagelib): Require allowedImageLibOrigins 
config array be set with safe origins or otherwise reject `postMessage`
  messages in case from untrusted sources
- Security fix/Breaking change (xdomain): Namespace xdomain file to avoid
  it being used to modify non-xdomain storage
- Security fix (Imagelib): Expose `dropXMLInternalSubset` to extensions
  for preventing billion laughs attack (and use in Imagelib)
2018-09-24 20:59:47 +08:00

7 lines
167 B
JavaScript
Raw Blame History

import svgEditor from './svg-editor.js';
svgEditor.setConfig({
canvasName: 'xdomain', // Namespace this
allowedOrigins: ['*'],
allowedImageLibOrigins: ['*']
});
Reference in New Issue View Git Blame Copy Permalink