feat($compile): Reduce source src from RESOURCE_URL to URL context.

rjamet · Narretz · commit 511527507dde · 2016-08-17T22:21:15.000+02:00
Source src is only for media files (videos, audio, images), and present
no known script execution possibilities. We also don't expect new ones to pop up,
as this tags is only supported on recent browsers.
diff --git a/src/ng/compile.js b/src/ng/compile.js
@@ -3155,7 +3155,7 @@ function $CompileProvider($provide, $$sanitizeUriProvider) {
       // img and various html5 media tags. Note that track src allows files
       // containing CSS, so leave that to RESOURCE_URL level.
       if (attrNormalizedName === 'src' || attrNormalizedName === 'ngSrc') {
-        if (['img', 'video', 'audio'].indexOf(tag) === -1) {
+        if (['img', 'video', 'audio', 'source'].indexOf(tag) === -1) {
           return $sce.RESOURCE_URL;
         }
       // maction[xlink:href] can source SVG.  It's not limited to <maction>.

Original file line number	Diff line number	Diff line change
`@@ -3155,7 +3155,7 @@ function $CompileProvider($provide, $$sanitizeUriProvider) {`
`3155`	`3155`	`// img and various html5 media tags. Note that track src allows files`
`3156`	`3156`	`// containing CSS, so leave that to RESOURCE_URL level.`
`3157`	`3157`	`if (attrNormalizedName === 'src' \|\| attrNormalizedName === 'ngSrc') {`
`3158`		`- if (['img', 'video', 'audio'].indexOf(tag) === -1) {`
	`3158`	`+ if (['img', 'video', 'audio', 'source'].indexOf(tag) === -1) {`
`3159`	`3159`	`return $sce.RESOURCE_URL;`
`3160`	`3160`	`}`
`3161`	`3161`	`// maction[xlink:href] can source SVG. It's not limited to <maction>.`