repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Properly handle context variables that are NULL.
2013-10-13
Edwar
d
Z
.
Y
a
ng
Properly handl
e
context variables that a
r
e NULL
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-10-13
Edward Z
.
Yang
Impleme
n
ta
t
ion of a Zipper, for
ef
f
icient
splice
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-10-13
Edward Z
.
Yang
Improve
giti
g
nore
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-09-17
Edward
Z
.
Yang
F
i
x qu
a
dratic b
e
hav
i
o
r in DO
M
Lex due to array
_
shif
t
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-09-14
Edwa
r
d Z
.
Yang
Properl
y
use HMAC for s
e
cure munging
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-07-27
Edwar
d
Z
.
Ya
n
g
Tight
e
n up inva
r
i
a
n
t
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-07-27
E
d
ward Z
.
Yang
Explicitly spec
i
fy
d
ecorator name
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-07-27
Ed
w
ard Z
.
Y
an
g
N
e
w
dire
c
t
ive
%Core
.
A
l
lowHostnameUndersco
r
e
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-07-18
Edward Z
.
Yang
Ad
d
n
ote fall throug
h
i
s intentional
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-06-06
Edward Z
.
Yang
Make list nes
t
ing test more sensiti
v
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-05-22
Edward Z
.
Y
ang
Use
info_parent_def to get parent in
f
orm
a
ti
o
n, si
n
ce
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-05-21
Edward Z
.
Yang
Ignore commas
and nbsp
s
for
l
inkif
i
ca
t
ion
.
Thanks n
A
S
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-05-18
Edwa
r
d Z
.
Y
a
ng
D
oc f
i
x
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-04-16
Edward Z
.
Yang
Make
U
RI parsi
n
g algorithm more strict
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-02-21
Edwar
d
Z
.
Yan
g
Fix NEWS entry
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-02-18
Edward Z
.
Ya
n
g
Release 4
.
5
.
0
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2013-02-17
Edward Z
.
Yang
Add %Core
.
Disa
b
leExclu
d
es
directive
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Y
a
ng
Use SHA-1 instead of MD5
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-10-27
Edwa
r
d Z
.
Yang
Bla
c
klist
more
tag
s
from R
e
move
E
mpty
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Y
ang
Cleanup after data validation
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-10-27
E
d
w
ard Z
.
Yang
Do checks agains
t
iconvAva
i
labl
e
because P
H
P 5
.
4 h
a
s
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-10-11
E
dward Z
.
Yang
Commen
t
for bug
that needs
to get
f
ixed
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-10-11
Edward Z
.
Yang
C
S
S proper
t
i
es
p
age-break
-
*
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-07-30
Edward Z
.
Yang
Fix bug with
n
o
n-l
o
w
e
r case c
o
lor
n
am
e
s in HTML
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-07-27
Ed
w
ard
Z
.
Yan
g
Permit underscores in font-families
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-06-16
Edw
a
rd Z
.
Y
a
n
g
M
o
r
e support f
o
r white-spac
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-06-02
Edward Z
.
Yang
Don't lower-c
a
se componen
t
s
o
f background
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-05-26
Edward Z
.
Yang
Support
for
inline-block
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-05-15
Edward Z
.
Y
ang
Fix in
A
ttr
T
r
a
nsfo
r
m_Nofollo
w
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-05-02
Edward Z
.
Yang
Use prep
e
nd for autolo
a
d
ing on PHP 5
.
3+
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-04-27
E
dward Z
.
Yang
S
u
ppo
r
t for saf
e
exter
n
al scripts
v
ia expl
i
cit whitelist
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-03-17
Edward Z
.
Y
ang
Fix p
r
oblem where
s
tacked AttrT
r
a
nsforms clobber each
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-03-02
Edwar
d
Z
.
Yang
Actually make URI
.
DisableResources do something
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-02-18
Edward Z
.
Yang
Bugfix
:
_blank not blank
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-25
Edward Z
.
Yang
Update NEWS
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-19
Edwar
d
Z
.
Yang
Release 4
.
4
.
0
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
Edward
Z
.
Y
a
ng
Make all of the tests work
on all PHP versions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
Avoid
doing stupidly clev
e
r reflection tricks
t
hat
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
E
d
ward Z
.
Yang
M
o
de
r
nize some of th
e
testin
g
facilities
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-17
Ed
w
ard
Z
.
Yang
T
i
ghter CSS selector validati
o
n
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-06
Edward Z
.
Ya
n
g
Remark
a
bout bypassing host list
with
punycode
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-06
Edwa
r
d Z
.
Yang
O
p
t
io
n
al s
u
pport
for IDNAs with PE
A
R Ne
t
_IDNA2
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-03
E
d
wa
r
d Z
.
Yang
Remove
PEARSax3 lexer
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-30
Ed
w
ard
Z
.
Yang
Ma
k
e forms work for
t
r
ansitional doctypes
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-27
Edward Z
.
Yang
Remo
v
e inscr
u
table TODO, optionalize a
n
other
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-27
E
d
w
ard Z
.
Yang
Add
n
ote about super
s
eding modu
l
e
s in TO
D
O
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edw
a
rd Z
.
Yang
B
ump mino
r
version number to 4
.
4
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Ya
n
g
Add
t
es
t
for inv
a
l
i
d
SafeIframe usage
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
A
d
d more attribu
t
ions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edwar
d
Z
.
Yang
Implement
%H
T
ML
.
AllowedComm
e
nts and %HTML
.
A
llo
w
edCommentsRegexp
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
F
ix brok
e
n
table co
n
tent
m
odel, easily seen
i
n X
H
TML1
.
1
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Ed
w
ard
Z
.
Y
a
n
g
Properly handle nested su
b
li
s
ts by
f
olding into pre
v
io
u
s
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edwar
d
Z
.
Yang
Implement %H
T
ML
.
Targe
t
Blank
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
E
dwa
r
d Z
.
Yan
g
Add isB
e
nign and
g
e
tDefa
u
ltS
c
heme
methods
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward
Z
.
Y
a
n
g
Add
a li
t
tle
bit of documentation about co
n
texts for
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yan
g
Core
.
E
s
c
apeNonASCIICharacters now always wor
k
s, even
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
E
d
ward
Z
.
Yang
Add suppo
r
t
for scope attr
i
b
ute on td
a
nd
t
h
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
A
dd one m
o
re tes
t
for SPL autoload defaults
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edwar
d
Z
.
Ya
n
g
Fi
x
iconv trun
c
ation bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-18
Edward Z
.
Y
ang
Remove s
p
urious a
b
s
tract d
e
finition; P
H
P
5
.
4
d
oesn
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-18
E
d
ward Z
.
Y
a
n
g
Do
n
't unset parser variable; plays
p
o
o
rly with
serializ
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Y
a
ng
Typofix
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edward
Z
.
Y
ang
Don'
t
add nofo
l
low for matching
hosts
,
generalize
t
his
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Yang
Upda
t
e IN
S
TA
L
L
t
o a
v
oid missing config
snafu, update
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
E
d
ward Z
.
Y
ang
Do no
t
duplic
a
te nofollow attribu
t
e in transform
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-19
E
d
ward Z
.
Yan
g
E
xpli
c
itly initialize anonMo
d
ule to null
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-10
Edward Z
.
Yang
URI
.
Munge munges https to ht
t
p
U
RIs
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-10
E
dward Z
.
Yang
Co
l
or
key
w
ords now ca
s
e-insensitive
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
E
dward Z
.
Yang
Relea
s
e 4
.
3
.
0
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
Fix CSS URL inne
r
HTML/
c
ssText esca
p
ing bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
E
dwar
d
Z
.
Yan
g
P
rotect against font family innerHTML/cssText attacks
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Edwa
r
d Z
.
Yang
Fix I
n
t
e
r
n
e
t Explorer innerHTML bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-24
Ed
w
a
r
d Z
.
Y
a
ng
Implement
C
SS
.
All
o
wedFonts
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-22
Ed
w
ard Z
.
Yang
D
on't
aut
o
close if no pa
r
e
n
ts support
t
h
e
tag
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-21
Edward Z
.
Yang
Safety upda
t
e for nested ul t
e
st
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-17
Edward Z
.
Yang
Fix E_N
O
TICE from
i
n
dexing
i
nto empty string
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-02-27
Edward Z
.
Y
a
ng
Fix missing num
e
ric entities (shows
up wh
e
n DirectLex
i
ng)
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-25
Ed
w
ard Z
.
Yang
D
r
amat
i
c
a
lly
rewrite
null host
U
R
I
handling
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-22
Edward Z
.
Yang
Fix embedding fla
s
h on no
n
-IE bro
w
sers and allow mo
r
e
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-14
Edwar
d
Z
.
Yang
Bu
m
p
version number for Cache
.
SerializerPermissi
o
ns
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-13
E
d
ward Z
.
Yang
Check that a
r
g
v is set before ope
r
a
t
i
n
g on it
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-12-31
Edward
Z
.
Yan
g
Fix bad interaction
bet
w
een boot
s
trap autoloader and
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-12-30
Edward
Z
.
Y
ang
Fix two bugs
w
i
th cach
i
ng of cus
t
o
m
ized
raw definitions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-21
Edwar
d
Z
.
Yang
Update PHPT instructions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edwar
d
Z
.
Yang
Add
i
nitial
i
mplementation of CSS
.
Trusted
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Ed
w
ard Z
.
Yang
Add sanity check against ze1_compatibility_mo
d
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edw
a
rd Z
.
Yang
F
ix
in
c
o
r
rect P
E
ARSax3
test asserti
o
n
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-29
Ed
w
ard Z
.
Yang
C
h
e
c
k if schema
.
ser was
co
r
r
u
pt
e
d
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-28
Ed
w
a
rd Z
.
Yang
Fix removal of i
d
with DirectLe
x
by pre
s
erv
i
ng
arm
o
r
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edw
a
rd Z
.
Yang
Escape CDA
T
A before ha
n
dlin
g
conditional comment
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edwa
r
d
Z
.
Yang
Imp
l
ement HT
M
L
.
Nof
o
llow for external links
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edw
a
rd Z
.
Yang
Make
I
E
conditional comment
matc
h
i
n
g
u
ngreed
y
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
E
d
ward Z
.
Yang
Releas
e
4
.
2
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
Ed
w
ard Z
.
Yang
Rena
m
e newl
i
ne
n
ormalizatio
n
di
r
ective to
s
o
me
t
hing
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Y
a
ng
Shift to 4
.
2
.
0 rel
e
as
e
cycle
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
E
dward Z
.
Yang
Add support for f
i
l
e
://
URI s
c
heme
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
Edwa
r
d Z
.
Yang
U
p
date
T
ODO
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Yang
Implement HTML
.
FlashAllo
w
FullScree
n
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
Edw
a
rd Z
.
Yang
Add %CSS
.
Forbidde
n
Propert
i
es directive
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
Edward
Z
.
Yang
Add documentat
i
on
about configu
r
a
tion directive type
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
next