packages/codex/src/components/icon/Icon.test.ts javascript.browser.security.insecure-document-method.insecure-document-method User controlled data in methods like `innerHTML`, `outerHTML` or `document.write` is an anti-pattern that can lead to XSS vulnerabilities Details: https://sg.run/LwA9 82┆ wrapperDiv.innerHTML = wrapHtml; ⋮┆---------------------------------------- javascript.browser.security.insecure-innerhtml.insecure-innerhtml User controlled data in a `wrapperDiv.innerHTML` is an anti-pattern that can lead to XSS vulnerabilities Details: https://sg.run/8y0q 82┆ wrapperDiv.innerHTML = wrapHtml; ⋮┆---------------------------------------- typescript.react.security.audit.react-unsanitized-property.react-unsanitized-property User controlled data in a `wrapperDiv` is an anti-pattern that can lead to XSS vulnerabilities Details: https://sg.run/70Zv 82┆ wrapperDiv.innerHTML = wrapHtml; packages/codex/src/components/icon/Icon.vue javascript.vue.security.audit.xss.templates.avoid-v-html.avoid-v-html Dynamically rendering arbitrary HTML on your website can be very dangerous because it can easily lead to XSS vulnerabilities. Only use HTML interpolation on trusted content and never on user-provided content. Details: https://sg.run/0QEw 17┆