Skip to content

Commit

Permalink
Update SECURITY.md
Browse files Browse the repository at this point in the history
  • Loading branch information
martincizek authored Jun 14, 2021
1 parent b30d120 commit 2d68b76
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion SECURITY.md
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ When a string input is passed, the DOM parser is picked as follows.
* For standalone usage, [domino](https://github.com/fgnass/domino) parser is used.

Please note that a malicious string input can cause undesired effects within the DOM parser
even before Turndown code starts processing processes the document itself.
even before Turndown code starts processing the document itself.
These effects especially include downloading external resources and eventual script execution.

For critical applications with untrusted inputs, you should consider either cleaning up
Expand Down

0 comments on commit 2d68b76

Please sign in to comment.