Skip to content
This repository was archived by the owner on Aug 9, 2023. It is now read-only.

Commit efdf1f9

Browse files
wooormwooorm
authored
Add notes on security
1 parent 57cb2f8 commit efdf1f9

File tree

1 file changed

+7
-0
lines changed

1 file changed

+7
-0
lines changed

readme.md

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -61,6 +61,11 @@ or non-element, is found.
6161
`string?` — either `'context'` or `'toolbar'` (the state the `menu` is in), or
6262
`null`, if the last node is not a `menu` element.
6363

64+
## Security
65+
66+
`hast-util-menu-state` does not change the syntax tree so there are no openings
67+
for [cross-site scripting (XSS)][xss] attacks.
68+
6469
## Contribute
6570

6671
See [`contributing.md` in `syntax-tree/.github`][contributing] for ways to get
@@ -126,3 +131,5 @@ abide by its terms.
126131
[hast]: https://github.com/syntax-tree/hast
127132

128133
[element]: https://github.com/syntax-tree/hast#element
134+
135+
[xss]: https://en.wikipedia.org/wiki/Cross-site_scripting

0 commit comments

Comments
 (0)