css-element-queries icon indicating copy to clipboard operation
css-element-queries copied to clipboard

Published 20 hours ago verified publisher icon marcj

Avoid `.innerHTML` sink for Trusted Types compatibility.

Open aaronshim opened this issue 4 years ago • 0 comments

.innerHTML is considered a HTML injection sink sink in Trusted Types. Replacing .innerHTML with the functionally equivalent .textContent for style elements should avoid Trusted Types violations.

aaronshim avatar Jul 09 '21 19:07 aaronshim