github asnunes/mathml-to-latex v1.6.0
on GitHub

5 hours ago

  • (SECURITY) [#44] Patched high-severity vulnerabilities in @xmldom/xmldom
    The bundled XML parser was pinned to @xmldom/xmldom@0.8.10, which is affected by several high-severity advisories — uncontrolled recursion in XML serialization (DoS), and XML/node injection through unvalidated DocumentType, processing-instruction, comment, and CDATA serialization (GHSA-2v35-w6hq-6mfw, GHSA-f6ww-3ggp-fr8h, GHSA-x6wf-f3px-wcqx, GHSA-j759-j44w-7fr8, GHSA-wh4c-j3r5-mjhp). The dependency is now bumped to ^0.9.10, which remediates all of them. Upgrading is strongly recommended.
    Thanks to @cedporter for reporting.

  • (FEAT) Dual ESM + CommonJS package support
    The package now ships native ESM (dist/index.mjs) alongside CommonJS (dist/index.cjs) with a conditional exports map, so import and require both resolve correctly and bundlers can tree-shake. The public API, TypeScript types, and the UMD/CDN global remain unchanged. #57

  • (FIX) Deeply nested expressions no longer overflow the stack
    MathML traversal is now iterative instead of recursive, so arbitrarily deep inputs convert without a RangeError: Maximum call stack size exceeded. #48

  • (FIX) Prototype-chain keys in converter lookup
    Hardened the tag-to-converter lookup against prototype-chain property names. #50

Check out latest releases or
releases around asnunes/mathml-to-latex v1.6.0

Don't miss a new mathml-to-latex release

NewReleases is sending notifications on new releases.

Get notifications