repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Fix quadratic behavior in DOMLex due to array_shift.
2013-09-17
Edward Z
.
Yang
Fix quadrat
i
c
b
ehavio
r
i
n
DOMLex due to
a
r
r
a
y
_shift
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-09-14
Edward Z
.
Yang
Prope
r
ly use HMAC for secure munging
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-08-18
Marcus Bointo
n
PS
R
-2
reform
a
tting PHPDoc c
o
r
rections
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
Edward Z
.
Ya
n
g
Tighten up invariants
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
Edward Z
.
Y
ang
E
xplic
i
tly specify decorator name
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
Edward Z
.
Ya
n
g
New dir
e
ctiv
e
%C
o
r
e
.
AllowHo
s
t
n
ameUnderscor
e
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-18
Edward Z
.
Yang
Ad
d
note fall throug
h
is
int
e
ntional
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-17
Marcus Bointon
Fix var n
a
m
e con
f
lict in
l
oad
A
rr
a
y
commit
|
commitdiff
|
tree
2013-07-17
Synchro
A
bunch of
P
HPdoc an
d
php
co
d
es
n
i
f
fer c
o
rrections
.
.
.
commit
|
commitdiff
|
tree
2013-06-06
Edward Z
.
Yang
Make list nesting test more s
e
nsitive
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-22
Edward Z
.
Yang
Use
i
nfo_pare
n
t_def to get parent inform
a
tion, since
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-21
Ed
w
a
r
d
Z
.
Yang
Ignore commas and
n
b
s
p
s fo
r
linkifica
t
ion
.
T
hanks nAS
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-18
Edward Z
.
Yang
D
o
c
f
ix
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-04-16
Edward
Z
.
Yang
Make URI
p
arsing algorithm more strict
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-21
Edward Z
.
Yang
Fi
x
NEWS ent
r
y
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-18
Edward Z
.
Yang
Release 4
.
5
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-17
Edward Z
.
Y
ang
Add %Co
r
e
.
DisableExc
l
udes directi
v
e
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-12-21
Michael
Tibben
Add required constan
t
for comp
o
s
er autoloadin
g
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Y
a
ng
Use
SHA-1 instead of
MD5
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Ed
w
ard Z
.
Yang
Blackli
s
t
m
ore tags from
R
e
m
oveEmpt
y
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edwar
d
Z
.
Yang
Cleanup after d
a
ta
valid
a
tion
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
E
d
w
ard Z
.
Y
ang
Do checks against iconvAvailable because PHP 5
.
4
has
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-11
Edwar
d
Z
.
Y
ang
Comment for
b
ug
t
hat needs to
g
et
fixe
d
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-11
Edward Z
.
Yang
CSS properties
page-break
-
*
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-09-16
R
ob
Loa
c
h
Autoloading sup
p
o
rt fo
r
Compos
e
r
commit
|
commitdiff
|
tree
2012-07-30
E
dward
Z
.
Ya
n
g
Fix bug wi
t
h non-lower case color na
m
e
s in HTML
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-07-27
Edw
a
rd Z
.
Yan
g
Permit und
e
rscor
e
s in font-families
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-06-16
E
d
ward Z
.
Ya
n
g
More support
f
o
r whi
t
e-space
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-06-02
Ed
w
a
rd Z
.
Yang
Do
n
't lower-case components of background
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-26
Edward Z
.
Yang
Support for
i
nline-
b
lock
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-15
Edward Z
.
Yang
Fi
x
in Attr
T
ransform_No
f
ollow
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-02
Edward Z
.
Y
ang
Use
p
repend fo
r
autoloa
d
ing o
n
PHP 5
.
3+
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-04-27
E
dward Z
.
Yang
Su
p
port
for
s
af
e
external scripts via
explicit whit
e
list
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-17
Edward
Z
.
Ya
n
g
Fix probl
e
m
whe
r
e
stacked AttrTr
a
nsforms clobber
e
ach
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-16
Ben
j
amin Steini
n
ger
Add composer
.
json
f
ile for e
a
s
y
install via composer
.
commit
|
commitdiff
|
tree
2012-03-02
Ed
w
ard Z
.
Ya
n
g
Actually
m
a
k
e
U
RI
.
Disable
R
es
o
urces
do somethi
n
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-02-18
Edward Z
.
Yang
Bugfix: _blank not b
l
ank
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-25
Edwar
d
Z
.
Yang
Upda
t
e NEWS
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-19
Edward Z
.
Yang
R
elea
s
e 4
.
4
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
Make all
of the
tes
t
s
wo
r
k on all PHP versions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
E
d
w
ard Z
.
Yan
g
Avoi
d
doing stupi
d
ly clever reflec
t
i
o
n tricks that
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
M
o
d
erniz
e
some of the
t
esting
facilit
i
e
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-17
Edwar
d
Z
.
Yang
Ti
g
hter CSS s
e
lector
v
alidation
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
Edwar
d
Z
.
Yang
R
e
mark abo
u
t bypassing host
list with punycode
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
E
d
ward
Z
.
Yang
O
ptional support for
I
D
N
As wit
h
PE
A
R N
e
t_
I
DNA
2
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-03
Edward Z
.
Yang
R
e
move PEARSax3 lexer
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-30
Edwa
r
d Z
.
Y
a
ng
Make
form
s
work fo
r
transi
t
ional doctypes
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
Edward
Z
.
Y
a
ng
Rem
o
ve inscrutable TODO, optio
n
a
lize anothe
r
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
Edward Z
.
Y
ang
Add note abou
t
superseding modu
l
es in TODO
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
E
dward Z
.
Y
a
ng
Bump minor
v
e
rsion nu
m
ber to
4
.
4
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Add test for inval
i
d SafeIframe usage
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Bra
d
ley M
.
Fr
o
ehle
Implement Ifra
m
e module, and
p
ro
v
ide %HT
M
L
.
SafeIframe
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Add more at
t
ribution
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Implement
%HTML
.
AllowedComments and %HTML
.
A
l
lowedComments
R
egexp
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward
Z
.
Ya
n
g
F
i
x b
r
o
ke
n
table c
o
ntent model, easily seen in XHT
M
L
1
.
1
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Y
a
ng
Pr
o
perly handle nested subli
s
ts by
f
o
ld
i
ng into prev
i
ous
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
I
m
p
lement %HTML
.
TargetBlank
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edwa
r
d Z
.
Yang
Add
i
sBenign and getDe
f
aul
t
Scheme m
e
thods
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Y
ang
A
d
d a
littl
e
bit of document
a
tion about context
s
fo
r
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edw
a
rd
Z
.
Yang
Core
.
EscapeNonASCII
C
har
a
c
ters n
o
w
always
works, even
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Ya
n
g
Add suppor
t
for
scop
e
attribute
o
n td and th
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
E
d
w
a
r
d Z
.
Y
ang
Add o
n
e
more test for SPL aut
o
load defa
u
l
ts
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
Fix i
c
onv
t
r
u
ncation bu
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Edward
Z
.
Yang
R
emove spurious a
b
stract defin
i
tio
n
; PHP 5
.
4
d
oes
n
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Edward Z
.
Y
an
g
Don't u
n
set parser variable;
p
lays
poorly with serialize
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Yang
Ty
p
ofix
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edwa
r
d Z
.
Yang
D
o
n't add nofollow for matching hosts, generalize this
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edwar
d
Z
.
Yang
Update
I
N
STALL
to
a
voi
d
missin
g
config
s
na
f
u, update
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
E
dward Z
.
Yang
Do not
du
p
licat
e
n
of
o
llow attribute in transform
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-19
Edward Z
.
Y
ang
Explicitly in
i
tialize anon
M
odul
e
to null
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
Edward Z
.
Yan
g
URI
.
Munge munges
h
ttps to
h
ttp URIs
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
Edward Z
.
Yang
C
o
l
or keywords now cas
e
-insensitiv
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edwa
r
d Z
.
Yang
R
elease 4
.
3
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
Fi
x
C
SS
U
RL innerHTML/cssText escap
i
ng bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edwa
r
d Z
.
Yang
Protect
again
s
t
f
ont fa
m
i
l
y inner
H
T
M
L/
c
ssText attacks
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
E
dward Z
.
Y
ang
Fix
Inte
r
net Expl
o
rer innerHTML bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-24
Edward
Z
.
Yang
Im
p
lement C
S
S
.
AllowedFonts
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-22
Edward Z
.
Ya
n
g
Don'
t
autoclose if no
parents
s
uppor
t
t
h
e
tag
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-21
Edward Z
.
Yang
Safe
t
y
u
pda
t
e
for nested ul test
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-17
Edw
a
r
d Z
.
Yang
Fix E_NOTICE
f
ro
m
in
d
exing
i
nto
empty
s
tring
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-02-27
Edward Z
.
Y
a
ng
Fix mi
s
s
ing n
u
meric
e
ntiti
e
s
(
s
ho
w
s up
w
hen D
i
r
e
ctLe
x
i
ng)
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-25
Edward
Z
.
Yan
g
Dr
a
matically re
w
rite n
u
ll
host URI handling
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-22
Edward
Z
.
Yang
F
ix embe
d
d
i
ng f
l
ash on n
o
n
-
IE brow
s
ers and
a
llow more
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-19
Maxim Krizh
a
no
v
sky
It
e
rative tra
v
ersal of DOM
.
commit
|
commitdiff
|
tree
2011-01-14
Ed
w
ar
d
Z
.
Yang
Bump version number for Ca
c
he
.
Serializ
e
rP
e
rmissions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-13
P
etr Skoda
Add
new Cache
.
Ser
i
alizerPermissions option
.
commit
|
commitdiff
|
tree
2011-01-13
Edward Z
.
Yang
C
h
eck
t
h
a
t
arg
v
is set before opera
t
ing
o
n it
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-31
Edwa
r
d Z
.
Yang
F
i
x
b
a
d
interactio
n
between bootst
r
ap autoloader and
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-30
Edward
Z
.
Yang
Fix two b
u
gs w
i
th
caching of
customized
r
aw definiti
o
n
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-21
Edward Z
.
Yang
U
p
date PHPT i
n
structions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edward
Z
.
Yang
A
dd
i
nitial impleme
n
t
a
tion of CSS
.
T
rusted
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
E
d
w
ard
Z
.
Yang
Add sanity check against ze1_compatibi
l
ity_mod
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edwa
r
d Z
.
Yang
Fix i
n
cor
r
ec
t
PEARSa
x
3
test assertion
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-29
Edw
a
rd Z
.
Yang
Check if s
c
he
m
a
.
ser was cor
r
upte
d
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-28
Edward Z
.
Yang
Fix removal of
i
d wit
h
Direc
t
Lex by preserving armor
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-28
Ni
c
k Pope
Allo
w
non-static autoload metho
d
s w/ PHP
>
=
5
.
2
.
11
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
E
dward Z
.
Yang
Escape
C
DATA bef
o
re handling conditional comments
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edward Z
.
Yang
I
mplement HTML
.
Nofollow for external links
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Ed
w
ard Z
.
Yang
Make IE conditiona
l
comment matching ungreedy
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Y
a
ng
Release 4
.
2
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
next