18 Commits

Author	SHA1	Message	Date
jos	a60f3c8d9d	Fixed a security issue where forbidden properties like constructor could be replaced by using unicode characters when creating an object	2017-11-18 20:11:48 +01:00
jos	967e65cceb	Refactored usage of properties .isNode, .isSymbolNode, etc. into using functions like type.isNode(x) for security	2017-08-12 14:38:03 +02:00
Jos de Jong	69f3e882d7	Merge pull request #888 from ThomasBrierley/prototyped-scopes ... Prototyped Scopes	2017-07-05 22:01:29 +02:00
Thomas Brierley	955c72bebf	Update isSafeProperty interface	2017-06-29 14:56:47 +01:00
Nekomajin42	9678d1a067	Change escape-goat to native escape function	2017-06-06 12:06:58 +02:00
Nekomajin42	e7aa5b4ec9	fix the escaping errors	2017-06-01 16:02:20 +02:00
Nekomajin42	e18cca6153	Revert "Revert "Use escape goat"" ... This reverts commit f83c88237f02edf7595e375606c1a0eaaa6ce50c.	2017-06-01 08:36:04 +02:00
Nekomajin42	f83c88237f	Revert "Use escape goat" ... This reverts commit 51e1b601b64d0bb782590e95c7a74bbb7fb179ff.	2017-06-01 08:35:47 +02:00
Nekomajin42	51e1b601b6	Use escape goat	2017-06-01 08:19:16 +02:00
Nekomajin42	7301b6fcf9	Implement toHTML() to Nodes ... toHTML() method to each Node, and update in the docs	2017-05-21 15:47:43 +02:00
jos	27660d8c00	Some more security measures	2017-05-05 21:08:23 +02:00
jos	85ac1a0aa4	Some more security measures	2017-05-05 20:53:20 +02:00
jos	73b774a51b	Use safe map, forEach, join	2017-05-05 12:32:21 +02:00
jos	19faeac16c	Escape function names and properties	2017-04-24 21:36:00 +02:00
jos	c259c936ec	Refactored compile into a factory function	2017-04-22 17:12:38 +02:00
jos	a7bd4cd833	Register _compile as separate functions	2017-04-22 16:49:22 +02:00
Max Bruckner	a75abeb58e	ObjectNode: prettier LaTeX output	2016-01-05 00:36:47 +01:00
jos	8d3d58e724	Implemented ObjectNode and object support in the expression parser	2016-01-02 23:00:14 +01:00