GHSA-299v-8pq9-5gjq: New API has Potential XSS in its MarkdownRenderer component
Summary
A security vulnerability exists in the `MarkdownRenderer.jsx` component where it uses `dangerouslySetInnerHTML` (a React feature that directly inserts HTML code without filtering) to display content generated by the AI model, allowing XSS (cross-site scripting, where attackers inject malicious code that runs in a user's browser). This means if the model outputs code containing `<script>` tags, those scripts will execute automatically, potentially redirecting users or performing other harmful actions, and the problem persists even after closing the chat because the malicious script gets saved in the chat history.
Solution / Mitigation
The source text suggests that 'the preview may be placed in an iframe sandbox' (a restricted container that limits what code can do) and 'dangerous html strings should be purified before rendering' (cleaning the HTML to remove harmful elements before displaying it). However, these are listed as 'Potential Workaround' suggestions rather than confirmed fixes or patches.
Vulnerability Details
EPSS: 0.0%
Classification
Affected Packages
Related Issues
Original source: https://github.com/advisories/GHSA-299v-8pq9-5gjq
First tracked: February 23, 2026 at 07:00 PM
Classified by LLM (prompt v3) · confidence: 85%