From 3a0d3c3c40aca7c3351b33be4caeff2ae73e8fac Mon Sep 17 00:00:00 2001
From: Hyunyoung Cho <zerohch0@gmail.com>
Date: Fri, 17 Jan 2020 00:53:50 +0900
Subject: [PATCH] Test for Fix: #2670

---
 test/specs/helpers/isValidXss.spec.js | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/test/specs/helpers/isValidXss.spec.js b/test/specs/helpers/isValidXss.spec.js
index dcfcf9d772..89be10b143 100644
--- a/test/specs/helpers/isValidXss.spec.js
+++ b/test/specs/helpers/isValidXss.spec.js
@@ -8,10 +8,13 @@ describe('helpers::isValidXss', function () {
     expect(isValidXss("<img src='/' onerror='javascript:alert('xss')'>xss</script>")).toBe(true);
     expect(isValidXss("<script>console.log('XSS')</script>")).toBe(true);
     expect(isValidXss("onerror=alert('XSS')")).toBe(true);
+    expect(isValidXss("onmouseover=alert('XSS')")).toBe(true);
+    expect(isValidXss("onkeyup=alert('XSS')")).toBe(true);
     expect(isValidXss("<a onclick='alert('XSS')'>Click Me</a>")).toBe(true);
   });
 
   it('should not detect non script tags', function() {
+    expect(isValidXss("only=true")).toBe(false);
     expect(isValidXss("/one/?foo=bar")).toBe(false);
     expect(isValidXss("<safe> tags")).toBe(false);
     expect(isValidXss("<safetag>")).toBe(false);