express-minify-html icon indicating copy to clipboard operation
express-minify-html copied to clipboard

verified publisher icon melonmanchan

Metadata

Express middleware wrapper around HTML minifier

Results 10 express-minify-html issues
Sort by recently updated
recently updated
newest added

Security issue - Regular Expression Denial of Service

express-minify-html uses an outdated version of [clean-css](https://github.com/clean-css/clean-css) and becomes vulnerable to Regular Expression Denial of Service attacks. The vulnerability cannot be resolved by a simple `npm audit fix --force` on...

Scr1pting avatar Scr1pting

Not sure of default minifyJS value

1 comment

The source code declares an object with some default values, but I don't see `minifyJS` there. Is this assumed to be false by default?

mcandre avatar mcandre

Bump handlebars from 4.0.6 to 4.7.6

Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.0.6 to 4.7.6. Changelog Sourced from handlebars's changelog. v4.7.6 - April 3rd, 2020 Chore/Housekeeping: #1672 - Switch cmd parser to latest minimist (@dougwilson Compatibility notes: Restored Node.js...

dependabot[bot] avatar dependabot[bot]

dependencies

Bump lodash.merge from 4.6.0 to 4.6.2

Bumps [lodash.merge](https://github.com/lodash/lodash) from 4.6.0 to 4.6.2. Commits See full diff in compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=lodash.merge&package-manager=npm_and_yarn&previous-version=4.6.0&new-version=4.6.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/configuring-github-dependabot-security-updates) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot] avatar dependabot[bot]

dependencies

updating dependencies to resolve several npm audit issues

5 comment

Most recent: https://www.npmjs.com/advisories/1066

ma-jahn avatar ma-jahn

Update lodash.merge to 4.6.2 to resolve security vulnerability

7 comment

Hi! The guys at npm found a security vulnerability with lodash, which was fixed in 4.6.2: ![image](https://user-images.githubusercontent.com/2386064/61361747-4f86e980-a881-11e9-8726-957dc934e4f1.png)

meszaros-lajos-gyorgy avatar meszaros-lajos-gyorgy

<pre>, <textarea> and <code> tags

3 comment

Content of `pre`, `textarea` and `code` tags should not be minified, even if HTML whitespace collapsing is enabled (must be an exception like inside of tags & props).

bob6664569 avatar bob6664569

Must be to Error handler

1 comment

In my scenario if html-minify has error then whole server is down! I think, that html-minify must be in try{...}catch(err){...} to prevent server down, and if err then return original...

devalexqt avatar devalexqt

catch exceptions in minify lib and pass the error to the express cb

5 comment

Hi, I ran into some problems with the middleware when the `minify` library throws an exception.

simonmilz avatar simonmilz

Apply minification to inline JS, CSS

1 comment

I set `minifyJS` to `true`, but my inline JavaScript snippets are not being minified. Could express-minify-html minify inline JS, and inline CSS as well? That could also reduce our bandwidth...

mcandre avatar mcandre

Metadata

60
Stars
15
Forks
Watchers

Owner

verified publisher icon melonmanchan

Metadata

Express middleware wrapper around HTML minifier

Back