Svelte vulnerable to XSS during SSR with contenteditable `bind:innerText` and `bind:textContent`

Moderate severity GitHub Reviewed Published Feb 25, 2026 in sveltejs/svelte • Updated Mar 11, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts