ids-enterprise 4.57.1 → 4.57.2

package/dist/css/theme-classic-contrast.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-classic-contrast.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-classic-dark.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-classic-dark.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-classic-light.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-classic-light.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-new-contrast.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-new-contrast.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-new-dark.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-new-dark.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-new-light.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-new-light.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-soho-contrast.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-soho-contrast.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-soho-dark.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-soho-dark.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-soho-light.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-soho-light.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-uplift-contrast.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-uplift-contrast.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-uplift-dark.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-uplift-dark.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-uplift-light.css

@@ -1,8 +1,8 @@
 @charset "UTF-8";
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/css/theme-uplift-light.min.css

@@ -1,7 +1,7 @@
 @charset "UTF-8";/*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.266Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.341Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License

package/dist/js/sohoxi.esm.js

@@ -1,7 +1,7 @@
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.703Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.781Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License
@@ -345,7 +345,7 @@ if (!isIE11) {
 
 var name = "ids-enterprise";
 var slug = "ids-enterprise";
-var version = "4.57.1";
+var version = "4.57.2";
 var description = "Infor Design System (IDS) Enterprise Components for the web";
 var repository = {
 	type: "git",
@@ -764,25 +764,10 @@ xssUtils.sanitizeConsoleMethods = function (html) {
 
 
 xssUtils.sanitizeHTML = function (html) {
-  var santizedHtml = html.replace(/<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/g, '');
-  santizedHtml = santizedHtml.replace(/<[^>]+/g, function (match) {
-    var expr = /(\/|\s)on\w+=('|")?/g;
-    var str = match;
-
-    if ((str.match(expr) || []).length > 0) {
-      str = str.replace(/(\/|\s)title=('|")(.*)('|")/g, function (m) {
-        if ((m.match(expr) || []).length > 0) {
-          return m.replace(expr, function (m2) {
-            return m2.replace('on', '');
-          });
-        }
-
-        return m;
-      });
-    }
+  // Remove on xxx functions https://regex101.com/r/hsLeFl/1/
+  var santizedHtml = html.replace(/\bon\w+=\S+?(?=(>|&|<| |"))/g, ''); // Remove Script tags
 
-    return str.replace(/(\/|\s)on\w+=('|")?[^"]*('|")?/g, '');
-  }); // Remove console methods
+  santizedHtml = santizedHtml.replace(/<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/g, ''); // Remove console methods
 
   santizedHtml = this.sanitizeConsoleMethods(santizedHtml); // Remove nested script tags
 
@@ -855,9 +840,10 @@ xssUtils.escapeHTML = function (value) {
       '<': '&lt;',
       '>': '&gt;',
       '"': '&quot;',
-      "'": '&apos;'
+      "'": '&apos;',
+      '\\': '&bsol;'
     };
-    var reg = /[&<>"']/ig;
+    var reg = /[&<>"'\\]/ig;
     return newValue.replace(reg, function (match) {
       return map[match];
     });
@@ -886,7 +872,7 @@ xssUtils.unescapeHTML = function (value) {
 
     var doc = new DOMParser().parseFromString(value, 'text/html'); // Keep leading/trailing spaces
 
-    return "".concat(match(/^\s*/)).concat(doc.documentElement.textContent.trim()).concat(match(/\s*$/));
+    return "".concat(match(/^\s*|\\/)).concat(doc.documentElement.textContent.trim()).concat(match(/\s*$|\\/));
   }
 
   return value;
@@ -903,7 +889,7 @@ xssUtils.unescapeHTML = function (value) {
 
 
 xssUtils.htmlEntities = function (string) {
-  return String(string).replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/"/g, '&quot;');
+  return String(string).replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/\\/g, '&bsol;').replace(/"/g, '&quot;');
 };
 /**
  * Ensure that a link is a local link (relative to the current page)
@@ -95424,7 +95410,7 @@ var editors = {
 
       this.editorWidth = api.setUnit(editorOptions.width || container.outerWidth());
       delete editorOptions.width;
-      container[0].innerHTML = "<div class=\"editor-wrapper\" style=\"width: ".concat(this.editorWidth, ";\">\n          <div class=\"editor\" data-init=\"false\">").concat(xssUtils.unescapeHTML(value), "</div>\n        </div>");
+      container[0].innerHTML = "<div class=\"editor-wrapper\" style=\"width: ".concat(this.editorWidth, ";\">\n          <div class=\"editor\" data-init=\"false\">").concat(xssUtils.sanitizeHTML(xssUtils.unescapeHTML(value)), "</div>\n        </div>");
       this.td = container.closest('td');
       this.input = $('.editor', container);
       this.input.popover({
@@ -109493,7 +109479,7 @@ Datagrid.prototype = {
       var tooltipContentEl = this.tooltip.querySelector('.tooltip-content');
 
       if (tooltipContentEl) {
-        tooltipContentEl.innerHTML = options.content;
+        tooltipContentEl.innerHTML = xssUtils.sanitizeHTML(options.content);
         this.tooltip.classList.remove('is-hidden', 'top', 'right', 'bottom', 'left');
         this.tooltip.style.display = '';
         this.tooltip.classList.add(options.placement || 'top');

package/dist/js/sohoxi.js

@@ -1,7 +1,7 @@
 /*! 
- *  IDS Enterprise Components - v4.57.1
- *  Date: 2021-11-18T17:59:35.703Z
- *  Revision: cc21054f9a63cf883f678a6b80e49b8e566053d9
+ *  IDS Enterprise Components - v4.57.2
+ *  Date: 2021-12-09T20:30:57.781Z
+ *  Revision: 8bf0e7b0696db3d0cf6c844d9787aa392906f3d6
  *  
  *  
  *  Apache License
@@ -348,7 +348,7 @@ var Soho = (function (exports) {
 
   var name = "ids-enterprise";
   var slug = "ids-enterprise";
-  var version = "4.57.1";
+  var version = "4.57.2";
   var description = "Infor Design System (IDS) Enterprise Components for the web";
   var repository = {
   	type: "git",
@@ -767,25 +767,10 @@ var Soho = (function (exports) {
 
 
   xssUtils.sanitizeHTML = function (html) {
-    var santizedHtml = html.replace(/<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/g, '');
-    santizedHtml = santizedHtml.replace(/<[^>]+/g, function (match) {
-      var expr = /(\/|\s)on\w+=('|")?/g;
-      var str = match;
-
-      if ((str.match(expr) || []).length > 0) {
-        str = str.replace(/(\/|\s)title=('|")(.*)('|")/g, function (m) {
-          if ((m.match(expr) || []).length > 0) {
-            return m.replace(expr, function (m2) {
-              return m2.replace('on', '');
-            });
-          }
-
-          return m;
-        });
-      }
+    // Remove on xxx functions https://regex101.com/r/hsLeFl/1/
+    var santizedHtml = html.replace(/\bon\w+=\S+?(?=(>|&|<| |"))/g, ''); // Remove Script tags
 
-      return str.replace(/(\/|\s)on\w+=('|")?[^"]*('|")?/g, '');
-    }); // Remove console methods
+    santizedHtml = santizedHtml.replace(/<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/g, ''); // Remove console methods
 
     santizedHtml = this.sanitizeConsoleMethods(santizedHtml); // Remove nested script tags
 
@@ -858,9 +843,10 @@ var Soho = (function (exports) {
         '<': '&lt;',
         '>': '&gt;',
         '"': '&quot;',
-        "'": '&apos;'
+        "'": '&apos;',
+        '\\': '&bsol;'
       };
-      var reg = /[&<>"']/ig;
+      var reg = /[&<>"'\\]/ig;
       return newValue.replace(reg, function (match) {
         return map[match];
       });
@@ -889,7 +875,7 @@ var Soho = (function (exports) {
 
       var doc = new DOMParser().parseFromString(value, 'text/html'); // Keep leading/trailing spaces
 
-      return "".concat(match(/^\s*/)).concat(doc.documentElement.textContent.trim()).concat(match(/\s*$/));
+      return "".concat(match(/^\s*|\\/)).concat(doc.documentElement.textContent.trim()).concat(match(/\s*$|\\/));
     }
 
     return value;
@@ -906,7 +892,7 @@ var Soho = (function (exports) {
 
 
   xssUtils.htmlEntities = function (string) {
-    return String(string).replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/"/g, '&quot;');
+    return String(string).replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/\\/g, '&bsol;').replace(/"/g, '&quot;');
   };
   /**
    * Ensure that a link is a local link (relative to the current page)
@@ -95427,7 +95413,7 @@ var Soho = (function (exports) {
 
         this.editorWidth = api.setUnit(editorOptions.width || container.outerWidth());
         delete editorOptions.width;
-        container[0].innerHTML = "<div class=\"editor-wrapper\" style=\"width: ".concat(this.editorWidth, ";\">\n          <div class=\"editor\" data-init=\"false\">").concat(xssUtils.unescapeHTML(value), "</div>\n        </div>");
+        container[0].innerHTML = "<div class=\"editor-wrapper\" style=\"width: ".concat(this.editorWidth, ";\">\n          <div class=\"editor\" data-init=\"false\">").concat(xssUtils.sanitizeHTML(xssUtils.unescapeHTML(value)), "</div>\n        </div>");
         this.td = container.closest('td');
         this.input = $('.editor', container);
         this.input.popover({
@@ -109496,7 +109482,7 @@ var Soho = (function (exports) {
         var tooltipContentEl = this.tooltip.querySelector('.tooltip-content');
 
         if (tooltipContentEl) {
-          tooltipContentEl.innerHTML = options.content;
+          tooltipContentEl.innerHTML = xssUtils.sanitizeHTML(options.content);
           this.tooltip.classList.remove('is-hidden', 'top', 'right', 'bottom', 'left');
           this.tooltip.style.display = '';
           this.tooltip.classList.add(options.placement || 'top');