# Angular Unsafe Property Binding

- ID: angular-unsafe-property-binding
- Severity: HIGH
- CWE: Cross-Site Scripting (XSS) (CWE-79)
- Languages: JavaScript, TypeScript

## Description

Property bindings like [innerHTML] and [src] with untrusted data enable XSS attacks
when Angular's sanitizer is bypassed or insufficient.

## Detection Message

Property binding '{binding}' used without explicit sanitization. This may allow XSS if bound to untrusted data.

## Remediation

Use DOMPurify to sanitize content before binding to innerHTML.

```typescript
import DOMPurify from 'dompurify';

export class UserProfileComponent {
  get sanitizedBio(): string {
    return DOMPurify.sanitize(this.userBio, {
      ALLOWED_TAGS: ['p', 'br', 'strong', 'em'],
      ALLOWED_ATTR: []
    });
  }
}
```

Learn more: https://shoulder.dev/learn/typescript/cwe-79/unsafe-property-binding

## Documentation

[object Object]

## Related Rules

- **Angular Unsafe Security Context Bypass** [CRITICAL]: 
- **Cross-Site Scripting (XSS) via Response** [HIGH]: 
- **Cross-Site Scripting (XSS) in Templates** [HIGH]: