Upgrade DOM sanitization dependency | Critiq Docs

#Metadata

Rule ID: ts.security.unsafe-dompurify-version
Severity: high
Confidence: 0.82
Languages: javascript, typescript
Presets: security, strict
Stability: experimental
Applies to: project
Tags: dependency, rules-catalog, security, xss

#Why it matters

Older sanitizer versions can miss browser parsing edge cases and leave XSS protections incomplete.

#Remediation

Upgrade the package, then keep HTML sanitizer usage behind a small reviewed wrapper.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/typescript/ts.security.unsafe-dompurify-version.rule.yaml.

Back to directory Open rule in repository