hppx 0.1.1 → 0.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +0 -22
- package/package.json +1 -1
package/README.md
CHANGED
|
@@ -180,28 +180,6 @@ HPP is not a complete security solution. You still need:
|
|
|
180
180
|
|
|
181
181
|
MIT License - see [LICENSE](LICENSE) file for details.
|
|
182
182
|
|
|
183
|
-
## Changelog
|
|
184
|
-
|
|
185
|
-
### v0.1.1 (Security & Performance Update)
|
|
186
|
-
|
|
187
|
-
- **Security Enhancements:**
|
|
188
|
-
- Added `maxArrayLength` to prevent memory exhaustion attacks
|
|
189
|
-
- Added `maxKeyLength` to prevent long key DoS attacks
|
|
190
|
-
- Enhanced prototype pollution protection in nested operations
|
|
191
|
-
- Fixed validation of malformed keys (null bytes, bracket/dot-only keys)
|
|
192
|
-
- Added comprehensive options validation with helpful error messages
|
|
193
|
-
- **Bug Fixes:**
|
|
194
|
-
- Fixed `onPollutionDetected` callback receiving correct source information
|
|
195
|
-
- Improved error handling with proper error propagation
|
|
196
|
-
- **Performance:**
|
|
197
|
-
- Added path caching for faster whitelist checks
|
|
198
|
-
- Added path segment caching to reduce parsing overhead
|
|
199
|
-
- Optimized repeated sanitization operations
|
|
200
|
-
- **Developer Experience:**
|
|
201
|
-
- Improved TypeScript types and removed unnecessary `any` types
|
|
202
|
-
- Enhanced error messages and logging
|
|
203
|
-
- Added comprehensive test suite for security features
|
|
204
|
-
|
|
205
183
|
## 🔗 Links
|
|
206
184
|
|
|
207
185
|
- [NPM Package](https://www.npmjs.com/package/hppx)
|
package/package.json
CHANGED