mathjs

mirror of https://github.com/josdejong/mathjs.git synced 2025-12-08 19:46:04 +00:00

Author	SHA1	Message	Date
Jos de Jong	ed2cce4d17	fix: various security vulnerabilities (#3255 ) * fix: disable parser functions in the CLI (security issue) * fix: ensure `ObjectWrappingMap` doesn't allow deleting unsafe properties (security issue) * fix: enable using methods and (safe) properties on plain arrays * docs: update the "Less vulnerable expression parser" section in the docs * chore: fix typos and linting issues * chore: keep functions like `simplify` enabled in the CLI * docs: update the security page * fix: ensure `ObjectWrappingMap.keys` cannot list unsafe properties * fix: when overwriting a rawArgs function with a non-rawArgs function it was still called with raw arguments * docs: fix a typo	2024-08-27 16:42:46 +02:00
Boris Krisanov	98f83c63cd	Fix spelling and grammar in docs (#2791 )	2022-09-21 17:29:48 +02:00
0xflotus	71a02f3164	fixed vulnerabilities (#1583 )	2019-07-31 19:27:02 +02:00
jos	a602a38340	Updated docs for v6	2019-05-20 21:42:49 +02:00
jos	078f1dd69f	Renamed methods `.eval` to `.evaluate`, updated all docs and examples accordingly	2019-01-16 10:11:32 +01:00
jos	b3b96749bf	Refactored `var` into `const`/`let`, and removed a lot of semicolons	2018-06-13 12:21:14 +02:00
jos	6613f1c844	Release the second release candidate `4.0.0-rc.2`	2018-02-21 11:36:43 +01:00
jos	be913efa29	Added docs and example on making the expression parser less vulnerable	2017-05-12 12:15:46 +02:00
jos	ee6efa3768	Only allow accessing/assigning properties on plain objects. Only allow calling known methods.	2017-04-08 15:32:10 +02:00
jos	04cbd0c0b1	Added a section on how to report security issues	2017-04-02 20:08:48 +02:00
jos	2f45600905	Fixed a security vulnerability in the expression parser allowing execution of arbitrary JavaScript	2017-03-31 10:18:14 +02:00

11 Commits