(value: string)
| 192 | } |
| 193 | |
| 194 | private _escapeSelectorValue(value: string): string { |
| 195 | // Escape backslashes and double quotes to prevent CSS selector injection. |
| 196 | // This securely confines the value inside an attribute selector. |
| 197 | return `"${value.replace(/\\/g, '\\\\').replace(/"/g, '\\"')}"`; |
| 198 | } |
| 199 | |
| 200 | private _containsAttributes(tag: MetaDefinition, elem: HTMLMetaElement): boolean { |
| 201 | return Object.keys(tag).every( |