search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
first · prev · next
Support for safe external scripts via explicit whitelist.
2012-04-27 Edward Z. YangSupport for safe external scripts via explicit whitelist.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-03-17 Edward Z. YangFix problem where stacked AttrTransforms clobber each...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-03-16 Benjamin SteiningerAdd composer.json file for easy install via composer.
 commit | commitdiff | tree
2012-03-02 Edward Z. YangActually make URI.DisableResources do something.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-02-18 Edward Z. YangBugfix: _blank not blank.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-25 Edward Z. YangUpdate NEWS.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-19 Edward Z. YangRelease 4.4.0
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-18 Edward Z. YangMake all of the tests work on all PHP versions.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-18 Edward Z. YangAvoid doing stupidly clever reflection tricks that...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-18 Edward Z. YangModernize some of the testing facilities.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-17 Edward Z. YangTighter CSS selector validation.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-06 Edward Z. YangRemark about bypassing host list with punycode.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-06 Edward Z. YangOptional support for IDNAs with PEAR Net_IDNA2
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2012-01-03 Edward Z. YangRemove PEARSax3 lexer.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-30 Edward Z. YangMake forms work for transitional doctypes.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-27 Edward Z. YangRemove inscrutable TODO, optionalize another.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-27 Edward Z. YangAdd note about superseding modules in TODO.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-26 Edward Z. YangBump minor version number to 4.4.0.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-26 Edward Z. YangAdd test for invalid SafeIframe usage.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-26 Bradley M. FroehleImplement Iframe module, and provide %HTML.SafeIframe...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-26 Edward Z. YangAdd more attributions.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-26 Edward Z. YangImplement %HTML.AllowedComments and %HTML.AllowedCommentsRegexp
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-26 Edward Z. YangFix broken table content model, easily seen in XHTML1.1
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-26 Edward Z. YangProperly handle nested sublists by folding into previous...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-26 Edward Z. YangImplement %HTML.TargetBlank
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-25 Edward Z. YangAdd isBenign and getDefaultScheme methods.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-25 Edward Z. YangAdd a little bit of documentation about contexts for...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-25 Edward Z. YangCore.EscapeNonASCIICharacters now always works, even...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-25 Edward Z. YangAdd support for scope attribute on td and th.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-25 Edward Z. YangAdd one more test for SPL autoload defaults.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-25 Edward Z. YangFix iconv truncation bug.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-18 Edward Z. YangRemove spurious abstract definition; PHP 5.4 doesn...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-12-18 Edward Z. YangDon't unset parser variable; plays poorly with serialize.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-08-24 Edward Z. YangTypofix.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-08-24 Edward Z. YangDon't add nofollow for matching hosts, generalize this...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-08-24 Edward Z. YangUpdate INSTALL to avoid missing config snafu, update...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-08-24 Edward Z. YangDo not duplicate nofollow attribute in transform.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-04-19 Edward Z. YangExplicitly initialize anonModule to null.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-04-10 Edward Z. YangURI.Munge munges https to http URIs.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-04-10 Edward Z. YangColor keywords now case-insensitive.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-03-27 Edward Z. YangRelease 4.3.0
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-03-27 Edward Z. YangFix CSS URL innerHTML/cssText escaping bug.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-03-27 Edward Z. YangProtect against font family innerHTML/cssText attacks.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-03-27 Edward Z. YangFix Internet Explorer innerHTML bug.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-03-24 Edward Z. YangImplement CSS.AllowedFonts.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-03-22 Edward Z. YangDon't autoclose if no parents support the tag.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-03-21 Edward Z. YangSafety update for nested ul test.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-03-17 Edward Z. YangFix E_NOTICE from indexing into empty string.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-02-27 Edward Z. YangFix missing numeric entities (shows up when DirectLexing).
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-01-25 Edward Z. YangDramatically rewrite null host URI handling.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-01-22 Edward Z. YangFix embedding flash on non-IE browsers and allow more...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-01-19 Maxim KrizhanovskyIterative traversal of DOM.
 commit | commitdiff | tree
2011-01-14 Edward Z. YangBump version number for Cache.SerializerPermissions.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2011-01-13 Petr SkodaAdd new Cache.SerializerPermissions option.
 commit | commitdiff | tree
2011-01-13 Edward Z. YangCheck that argv is set before operating on it.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-12-31 Edward Z. YangFix bad interaction between bootstrap autoloader and...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-12-30 Edward Z. YangFix two bugs with caching of customized raw definitions.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-11-21 Edward Z. YangUpdate PHPT instructions.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-11-12 Edward Z. YangAdd initial implementation of CSS.Trusted.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-11-12 Edward Z. YangAdd sanity check against ze1_compatibility_mode.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-11-12 Edward Z. YangFix incorrect PEARSax3 test assertion.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-10-29 Edward Z. YangCheck if schema.ser was corrupted.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-10-28 Edward Z. YangFix removal of id with DirectLex by preserving armor.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-10-28 Nick PopeAllow non-static autoload methods w/ PHP >= 5.2.11
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-28 Edward Z. YangEscape CDATA before handling conditional comments.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-28 Edward Z. YangImplement HTML.Nofollow for external links.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-28 Edward Z. YangMake IE conditional comment matching ungreedy.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-15 Edward Z. YangRelease 4.2.0.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-15 Edward Z. YangRename newline normalization directive to something...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-15 Tomasz MurasMake newline normalization optional.
 commit | commitdiff | tree
2010-09-15 Edward Z. YangShift to 4.2.0 release cycle.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-09 Edward Z. YangAdd support for file:// URI scheme.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-09 Edward Z. YangUpdate TODO.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-09 Edward Z. YangImplement HTML.FlashAllowFullScreen.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-04 Edward Z. YangAdd %CSS.ForbiddenProperties directive.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-04 Edward Z. YangAdd documentation about configuration directive types.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-09-04 Edward Z. YangReword documentation to be clearer, and give warning...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-08-27 Edward Z. YangFix Mac Snow Leopard APC bug.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-06-30 Edward Z. YangTighten up ignore spec.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-06-30 Edward Z. YangActually make URI.DisableResources do something.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-06-21 Edward Z. YangAdded %Core.RemoveProcessingInstructions.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-06-18 Edward Z. YangFix improper handling of IE conditional comments.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-06-01 Edward Z. YangRelease 4.1.1.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-06-01 Edward Z. YangFix undefined index warnings in maintenance scripts.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-06-01 Edward Z. YangFix bug in parsing single attribute with entities.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-06-01 Edward Z. YangRewrite CSS url() and font-family output logic.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-05-21 Edward Z. YangMake test script less chatty when log_errors is on.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-05-21 Edward Z. YangRemove shebang and +x from test script.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-05-18 Edward Z. YangFix infinite loop involving wrapping formedness.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-05-05 Edward Z. YangFix bug in background-position with center keyword.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-05-04 Edward Z. YangEmit errors when body is extracted.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-04-26 Edward Z. YangRelease 4.1.0.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-04-26 Edward Z. YangMute STRICT errors from CSSTidy and don't run PEARSax3...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-04-26 Edward Z. YangAlways quote the contents of url() in CSS.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-04-17 Edward Z. YangRemove +x bit from RemoveSpansWithoutAttributes.php
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-03-30 Edward Z. YangSupport for flashvars in HTML.SafeEmbed.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-03-10 Edward Z. YangHandle <ol><ol> properly by adding missing <li> tag.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-03-09 Edward Z. YangImprove handling of malformed object parameters.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-03-08 Edward Z. YangRemove call-time pass-by-reference.
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
2010-03-08 Edward Z. YangImplement Internet Explorer compatibility code for...
Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
 commit | commitdiff | tree
next
Standards-compliant HTML filter written in PHP