ol 10.5.1-dev.1743585027518 → 10.5.1-dev.1743841721224

package/control/Attribution.d.ts

@@ -55,7 +55,11 @@ export type Options = {
     render?: ((arg0: import("../MapEvent.js").default) => void) | undefined;
     /**
      * Optional attribution(s) that will always be
-     * displayed regardless of the layers rendered
+     * displayed regardless of the layers rendered.
+     * **Caution:** Attributions are rendered dynamically using `innerHTML`, which can lead to potential
+     * [**XSS (Cross-Site Scripting)**](https://en.wikipedia.org/wiki/Cross-site_scripting) vulnerabilities.
+     * Use this feature only for trusted content
+     * or ensure that the content is properly sanitized before inserting it.
      */
     attributions?: string | Array<string> | undefined;
 };
@@ -85,7 +89,11 @@ export type Options = {
  * the control should be re-rendered. This is called in a `requestAnimationFrame`
  * callback.
  * @property {string|Array<string>|undefined} [attributions] Optional attribution(s) that will always be
- * displayed regardless of the layers rendered
+ * displayed regardless of the layers rendered.
+ * **Caution:** Attributions are rendered dynamically using `innerHTML`, which can lead to potential
+ * [**XSS (Cross-Site Scripting)**](https://en.wikipedia.org/wiki/Cross-site_scripting) vulnerabilities.
+ * Use this feature only for trusted content
+ * or ensure that the content is properly sanitized before inserting it.
  */
 /**
  * @classdesc

package/control/Attribution.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Attribution.d.ts","sourceRoot":"","sources":["Attribution.js"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;qBAgCuB,OAAO,gBAAgB,EAAE,OAAO,KAAE,IAAI;;;;;mBAG/C,MAAM,GAAC,KAAK,CAAC,MAAM,CAAC,GAAC,SAAS;;AAzB5C;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAEH;;;;;;;;GAQG;AACH;IACE;;OAEG;IACH,sBAFW,OAAO,EA8IjB;IAnIC;;;OAGG;IACH,mBAA8C;IAE9C;;;OAGG;IACH,mBAC4D;IAE5D;;;OAGG;IACH,uBAAqC;IAErC;;;OAGG;IACH,6BAA6D;IAE7D;;;OAGG;IACH,qBACgE;IAMhE;;;OAGG;IACH,sBAAyC;IAsBvC;;;OAGG;IACH,uBAAoD;IAUpD;;;OAGG;IACH,eAA4C;IAU9C;;;OAGG;IACH,sBAAqD;IAyBrD;;;;OAIG;IACH,8BAA+B;IAE/B;;;OAGG;IACH,yBAA4B;IAG9B;;;;;OAKG;IACH,mCAkBC;IAED;;;OAGG;IACH,uBAmCC;IAED;;;OAGG;IACH,qBAIC;IAED;;OAEG;IACH,sBASC;IAED;;;;OAIG;IACH,kBAHY,OAAO,CAKlB;IAED;;;;OAIG;IACH,4BAHW,OAAO,QAYjB;IAED;;;;;;OAMG;IACH,wBAHW,OAAO,QASjB;IAED;;;;;OAKG;IACH,gBAHY,OAAO,CAKlB;CAUF;oBA/UmB,cAAc"}
+{"version":3,"file":"Attribution.d.ts","sourceRoot":"","sources":["Attribution.js"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;qBAgCuB,OAAO,gBAAgB,EAAE,OAAO,KAAE,IAAI;;;;;;;;;mBAG/C,MAAM,GAAC,KAAK,CAAC,MAAM,CAAC,GAAC,SAAS;;AAzB5C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AAEH;;;;;;;;GAQG;AACH;IACE;;OAEG;IACH,sBAFW,OAAO,EA8IjB;IAnIC;;;OAGG;IACH,mBAA8C;IAE9C;;;OAGG;IACH,mBAC4D;IAE5D;;;OAGG;IACH,uBAAqC;IAErC;;;OAGG;IACH,6BAA6D;IAE7D;;;OAGG;IACH,qBACgE;IAMhE;;;OAGG;IACH,sBAAyC;IAsBvC;;;OAGG;IACH,uBAAoD;IAUpD;;;OAGG;IACH,eAA4C;IAU9C;;;OAGG;IACH,sBAAqD;IAyBrD;;;;OAIG;IACH,8BAA+B;IAE/B;;;OAGG;IACH,yBAA4B;IAG9B;;;;;OAKG;IACH,mCAkBC;IAED;;;OAGG;IACH,uBAmCC;IAED;;;OAGG;IACH,qBAIC;IAED;;OAEG;IACH,sBASC;IAED;;;;OAIG;IACH,kBAHY,OAAO,CAKlB;IAED;;;;OAIG;IACH,4BAHW,OAAO,QAYjB;IAED;;;;;;OAMG;IACH,wBAHW,OAAO,QASjB;IAED;;;;;OAKG;IACH,gBAHY,OAAO,CAKlB;CAUF;oBAnVmB,cAAc"}

package/control/Attribution.js

@@ -34,7 +34,11 @@ import Control from './Control.js';
  * the control should be re-rendered. This is called in a `requestAnimationFrame`
  * callback.
  * @property {string|Array<string>|undefined} [attributions] Optional attribution(s) that will always be
- * displayed regardless of the layers rendered
+ * displayed regardless of the layers rendered.
+ * **Caution:** Attributions are rendered dynamically using `innerHTML`, which can lead to potential
+ * [**XSS (Cross-Site Scripting)**](https://en.wikipedia.org/wiki/Cross-site_scripting) vulnerabilities.
+ * Use this feature only for trusted content
+ * or ensure that the content is properly sanitized before inserting it.
  */
 
 /**