axios 0.19.1 → 0.19.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of axios might be problematic. Click here for more details.

Files changed (8) hide show
  1. package/CHANGELOG.md +46 -42
  2. package/dist/axios.js +12 -30
  3. package/dist/axios.map +1 -1
  4. package/dist/axios.min.js +2 -2
  5. package/dist/axios.min.map +1 -1
  6. package/lib/helpers/isURLSameOrigin.js +0 -5
  7. package/package.json +1 -1
  8. package/lib/helpers/isValidXss.js +0 -7
package/lib/helpers/isURLSameOrigin.js CHANGED
@@ -1,7 +1,6 @@
1
1
  'use strict';
2
2
 
3
3
  var utils = require('./../utils');
4
- var isValidXss = require('./isValidXss');
5
4
 
6
5
  module.exports = (
7
6
  utils.isStandardBrowserEnv() ?
@@ -22,10 +21,6 @@ module.exports = (
22
21
  function resolveURL(url) {
23
22
  var href = url;
24
23
 
25
- if (isValidXss(url)) {
26
- throw new Error('URL contains XSS injection attempt');
27
- }
28
-
29
24
  if (msie) {
30
25
  // IE needs attribute set twice to normalize properties
31
26
  urlParsingNode.setAttribute('href', href);
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "axios",
3
- "version": "0.19.1",
3
+ "version": "0.19.2",
4
4
  "description": "Promise based HTTP client for the browser and node.js",
5
5
  "main": "index.js",
6
6
  "scripts": {
package/lib/helpers/isValidXss.js DELETED
@@ -1,7 +0,0 @@
1
- 'use strict';
2
-
3
- module.exports = function isValidXss(requestURL) {
4
- var xssRegex = /(\b)(on\w+)=|javascript|(<\s*)(\/*)script/gi;
5
- return xssRegex.test(requestURL);
6
- };
7
-