claude-mem

airkjw/claude-mem

Fork 0

Commit Graph

Author	SHA1	Message	Date
Alex Newman	d0b4c7ee59	MAESTRO: Add DOMPurify XSS defense-in-depth to TerminalPreview (closes PR #896 ) PR #896 identified a valid XSS concern in TerminalPreview.tsx but was broken (missing DOMPurify import and dependency). The existing escapeXML:true on AnsiToHtml already mitigates the vector, but DOMPurify adds defense-in-depth sanitization. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-05 18:14:46 -05:00
Alex Newman	e6af8d207a	MAESTRO: Close duplicate CORS PR #926 in favor of merged PR #917 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-05 18:11:51 -05:00
Alex Newman	75b9930ee4	MAESTRO: Mark PR #917 CORS restriction as merged in triage document Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-05 18:11:12 -05:00

Author

SHA1

Message

Date

Alex Newman

d0b4c7ee59

MAESTRO: Add DOMPurify XSS defense-in-depth to TerminalPreview (closes PR #896 )

PR #896 identified a valid XSS concern in TerminalPreview.tsx but was
broken (missing DOMPurify import and dependency). The existing
escapeXML:true on AnsiToHtml already mitigates the vector, but
DOMPurify adds defense-in-depth sanitization.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-05 18:14:46 -05:00

Alex Newman

e6af8d207a

MAESTRO: Close duplicate CORS PR #926 in favor of merged PR #917

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-05 18:11:51 -05:00

Alex Newman

75b9930ee4

MAESTRO: Mark PR #917 CORS restriction as merged in triage document

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-05 18:11:12 -05:00

3 Commits