Skip to content

Merge branch 'main' into feat/social-media-embeds

GitHub Advanced Security / CodeQL failed Jan 24, 2026 in 2s

2 new alerts including 2 high severity security vulnerabilities

New alerts in code changed by this pull request

Security Alerts:

  • 2 high

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 93 in src/runtime/server/instagram-embed.ts

See this annotation in the file changed.

Code scanning / CodeQL

Incomplete multi-character sanitization High

This string may still contain
<script
Loading
, which may cause an HTML element injection vulnerability.

Check failure on line 93 in src/runtime/server/instagram-embed.ts

See this annotation in the file changed.

Code scanning / CodeQL

Bad HTML filtering regexp High

This regular expression does not match script end tags like </script >.