chore: add DOMPurify to CSP example

6pac · Oct 30, 2023 · 1e13388 · 1e13388
1 parent f40bf3b
commit 1e13388
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/examples/example-csp-header.html b/examples/example-csp-header.html
@@ -29,15 +29,14 @@ <h2>View Source:</h2>
 </table>
 
 <script src="https://cdn.jsdelivr.net/npm/sortablejs/Sortable.min.js"></script>
-<script src="sortable-cdn-fallback.js"></script>
+<script src="https://cdn.jsdelivr.net/npm/dompurify@3.0.6/dist/purify.min.js"></script>
 
 <script src="../dist/browser/slick.core.js"></script>
 <script src="../dist/browser/slick.interactions.js"></script>
 <script src="../dist/browser/slick.grid.js"></script>
 <script src="../dist/browser/plugins/slick.cellrangedecorator.js"></script>
 <script src="../dist/browser/plugins/slick.cellrangeselector.js"></script>
 <script src="../dist/browser/plugins/slick.cellselectionmodel.js"></script>
-
 <script src="./example-csp-header.js"></script>
 </body>
 </html>
diff --git a/examples/example-csp-header.js b/examples/example-csp-header.js
@@ -10,7 +10,8 @@ var columns = [
 
 var options = {
   enableCellNavigation: true,
-  enableColumnReorder: false
+  enableColumnReorder: false,
+  sanitizer: (dirtyHtml) => DOMPurify.sanitize(dirtyHtml, { RETURN_TRUSTED_TYPE: true })
 };
 
 document.addEventListener("DOMContentLoaded", function () {
@@ -31,7 +32,7 @@ document.addEventListener("DOMContentLoaded", function () {
       percentComplete: Math.round(Math.random() * 100),
       start: "01/01/2009",
       finish: "01/05/2009",
-      effortDriven: (i % 5 == 0)
+      effortDriven: (i % 5 === 0)
     };
   }