fix security warnings (#264)

teammapper-frontend/src/app/core/services/mmp/mmp.service.ts

@@ -6,6 +6,7 @@ import { jsPDF } from 'jspdf';
 import { first } from 'rxjs/operators';
 import * as mmp from '@mmp/index';
 import MmpMap from '@mmp/map/map';
+import DOMPurify from 'dompurify';
 import {
   ExportHistory,
   ExportNodeProperties,
@@ -369,10 +370,9 @@ export class MmpService implements OnDestroy {
    * Export the current mind map with the format passed as parameter.
    */
   public async exportMap(format = 'json') {
-    const name = this.getRootNode()
-      .name.replace(/\n/g, ' ')
-      .replace(/\s+/g, ' ')
-      .replace(/<[^>]*>?/gm, '');
+    const name = DOMPurify.sanitize(
+      this.getRootNode().name.replace(/\n/g, ' ').replace(/\s+/g, ' ')
+    );
 
     switch (format) {
       case 'json': {

teammapper-frontend/src/app/shared/shared.module.ts

@@ -6,7 +6,6 @@ import { RouterModule } from '@angular/router';
 import { FontAwesomeModule } from '@fortawesome/angular-fontawesome';
 import { MatIconModule } from '@angular/material/icon';
 import { MatToolbarModule } from '@angular/material/toolbar';
-import { StripTags } from './pipes/striptags.pipe';
 import { InverseBoolPipe } from './pipes/inverse-bool.pipe';
 import { MatDialogModule } from '@angular/material/dialog';
 import { MatGridListModule } from '@angular/material/grid-list';
@@ -21,7 +20,7 @@ import { MatInputModule } from '@angular/material/input';
 import { MatSelectModule } from '@angular/material/select';
 import { MatSlideToggleModule } from '@angular/material/slide-toggle';
 
-const PIPES = [StripTags, InverseBoolPipe];
+const PIPES = [InverseBoolPipe];
 
 @NgModule({
   imports: [