Skip to content

v2.0.0

Latest
Latest
Compare
Choose a tag to compare
@blakeembrey blakeembrey released this 29 Mar 00:04
· 2 commits to master since this release
v2.0.0
5f2205e
This commit was signed with the committer’s verified signature.
blakeembrey Blake Embrey
SSH Key Fingerprint: M0ITNfB+BngsDhNhVwWJl3OOIrDqTLFtdjQ3WGttbd8 Learn about vigilant mode.

Changed

  • Align encoding with WHATWG URL spec (#8) be0f77b
    • Stops encoding \, ^, and |.

Important: If you are using this to encode user entered and validated URLs, upgrade to v2 immediately. It is possible to exploit \ encoding in v1. A URL can be formed that looks like http://foo.com\@bar.com, which parses as foo.com for the host, but when encodeUrl(url) will parse as bar.com for the host.

v1.0.2...v2.0.0

Assets 2
Loading