repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Support for safe external scripts via explicit whitelist.
2012-04-27
Edward Z
.
Yang
Support for safe external scr
i
pts via explicit whitelist
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-03-17
Edwar
d
Z
.
Yang
Fix proble
m
where stacked
A
ttrTransforms c
l
obber each
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-03-16
Be
n
jamin Steininger
Add composer
.
json file for e
a
sy ins
t
all
v
ia
c
o
mposer
.
commit
|
commitdiff
|
tree
2012-03-02
E
d
ward Z
.
Yan
g
Actua
l
ly make URI
.
Di
s
ableReso
u
rces do someth
i
ng
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-02-18
Edward Z
.
Yang
Bugf
i
x: _blank not blank
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-25
E
d
ward Z
.
Yang
Update NE
W
S
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-19
Edward
Z
.
Yan
g
Release 4
.
4
.
0
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
E
d
w
a
r
d
Z
.
Yang
Make all
o
f the
tests work on all PHP
v
e
r
s
i
on
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
A
v
oid doing s
t
upidl
y
cl
e
ver reflection tricks
that
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
Edward
Z
.
Yang
Modernize some
of
t
h
e tes
t
i
ng facilities
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-17
E
d
ward Z
.
Yang
Tighter CSS
s
electo
r
validat
i
o
n
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-06
Edward Z
.
Ya
n
g
Remark about bypassin
g
host list with pun
y
c
o
de
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-06
Edw
a
rd Z
.
Yang
Optional supp
o
rt for I
D
NA
s
with
PEAR Net_IDNA
2
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-03
Edward Z
.
Yang
Remove PE
A
RSax3 le
x
er
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-30
E
d
w
ard Z
.
Yang
Make forms work fo
r
t
ra
n
sitional doctypes
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-27
Edward
Z
.
Ya
n
g
Remove inscruta
b
le TODO, opt
i
onalize
a
nother
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-27
Ed
w
ard Z
.
Yang
Add note about su
p
ersedin
g
modul
e
s in
TO
D
O
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Bump mino
r
ve
r
s
ion numb
e
r
to
4
.
4
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edwa
r
d Z
.
Yang
Add test for inval
i
d SafeIframe usage
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Bradl
e
y
M
.
Froeh
l
e
Implement Ifr
a
m
e
m
o
d
ule,
and provid
e
%
H
TML
.
Saf
e
Iframe
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Add more at
t
r
i
butions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Ya
n
g
Im
p
l
ement %HTML
.
A
l
lowedC
o
mme
n
ts and
%HTML
.
All
o
wedCo
m
mentsR
e
gexp
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yan
g
Fi
x
b
roke
n
table content mo
d
el, ea
s
ily
s
een in XHT
M
L1
.
1
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
E
d
ward Z
.
Yang
Pr
o
perly handle
n
e
s
ted sublis
t
s
b
y
folding into pre
v
ious
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
E
dward Z
.
Yang
I
mplement %
H
TM
L
.
TargetBlank
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
E
dward Z
.
Ya
n
g
Add is
B
enign and getDefaultSc
h
e
me metho
d
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
Add
a
little bit
of docume
n
tat
i
on
about contexts for
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
E
d
ward
Z
.
Yang
Core
.
EscapeNonASCIICharacters now always works, even
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edwa
r
d Z
.
Y
an
g
Add support
f
or
scope
a
t
t
rib
u
te
o
n td
a
nd th
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Ed
w
ard Z
.
Y
ang
Add
o
ne mor
e
test for
SPL
aut
o
load
defaults
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Ya
n
g
Fix
iconv t
r
un
c
ati
o
n bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-18
Edw
a
rd Z
.
Yang
Remo
v
e spurious abstract
definition; PHP 5
.
4 doesn
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-18
Edward Z
.
Ya
n
g
Don't unset parser varia
b
le; pl
a
ys poorly with
seria
l
ize
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Yang
T
y
p
ofix
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
E
d
ward Z
.
Y
ang
Don't add nofollow
for matching hosts, general
i
ze this
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edwar
d
Z
.
Y
ang
Update INST
A
LL to avoid
m
issing conf
i
g snafu, up
d
ate
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edward
Z
.
Yang
Do not du
p
li
c
ate nofollow attribute in transf
o
rm
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-19
Edward Z
.
Yang
Expl
i
citly
initialize anonModule to null
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-10
Edw
a
rd Z
.
Yang
URI
.
Mun
g
e
munges http
s
to htt
p
URIs
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-10
Edward Z
.
Yang
Color keywords no
w
case-insensitive
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
E
d
ward Z
.
Yang
Release 4
.
3
.
0
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Edward
Z
.
Yang
F
i
x
C
S
S URL innerH
T
M
L/cssText escaping bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
P
rotect against fon
t
fa
m
i
l
y in
n
erHTML/cssText
attac
k
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Ya
n
g
Fix I
n
ternet Explorer
i
nnerHTML
b
ug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-24
Edward Z
.
Yang
Implement CSS
.
Allowed
F
o
n
ts
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-22
Edwar
d
Z
.
Yan
g
Don
'
t autoclose if no pa
r
ents support the ta
g
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-21
Ed
w
a
r
d Z
.
Y
a
ng
Safety upd
a
te for nested ul test
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-17
E
d
war
d
Z
.
Y
a
ng
Fix E_NOTICE f
r
o
m ind
e
xing into empty string
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-02-27
E
d
w
a
rd Z
.
Yang
Fix missing numeri
c
entiti
e
s (shows up
wh
e
n Dire
c
tLexing)
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-25
E
d
ward Z
.
Y
ang
Dramat
i
cal
l
y rewrite null host URI h
a
ndling
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-22
Ed
w
ard Z
.
Y
a
ng
Fix embeddi
n
g
fla
s
h
on
non
-
IE br
o
wsers
a
n
d
a
l
low more
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-19
M
a
x
i
m Krizhanovsky
Iterative
travers
a
l
of D
O
M
.
commit
|
commitdiff
|
tree
2011-01-14
Edward Z
.
Yang
Bump version numbe
r
f
o
r
C
ache
.
SerializerPermissio
n
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-13
Pet
r
Skoda
A
d
d
n
ew C
a
che
.
SerializerPe
r
missi
o
ns opti
o
n
.
commit
|
commitdiff
|
tree
2011-01-13
Edward Z
.
Y
a
ng
Check tha
t
argv is set before
operating on it
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-12-31
Edward Z
.
Yang
Fix bad interaction between bootstra
p
au
t
ol
o
ad
e
r
and
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-12-30
Edw
a
rd Z
.
Ya
n
g
Fi
x
two b
u
gs wi
t
h caching of customized raw definitions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-21
Ed
w
ard
Z
.
Yang
U
pdate PHPT ins
t
ru
c
t
ions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edward Z
.
Ya
n
g
Add initial implementation of
C
SS
.
Trusted
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edwa
r
d Z
.
Yang
Add sanit
y
check against ze1
_
compatibility_m
o
de
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edward Z
.
Y
a
ng
Fix incorrect
P
E
ARSax
3
test asser
t
ion
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-29
Edward Z
.
Y
ang
Check if schema
.
ser wa
s
co
r
ru
p
ted
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-28
Edward Z
.
Y
ang
F
i
x removal
o
f id w
i
th D
i
r
ect
L
ex
b
y preserving armor
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-28
Nick Pope
Allow non-static autol
o
ad methods w/ PH
P
>= 5
.
2
.
11
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
E
dward
Z
.
Yang
Esca
p
e CDA
T
A before handling condi
t
ional c
o
mments
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edward Z
.
Yan
g
Imple
m
ent HTML
.
Nofollow for exter
n
al links
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edward Z
.
Yang
Make
IE
condi
t
i
o
nal comment matc
h
ing u
n
greedy
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
Edw
a
r
d
Z
.
Yang
Release 4
.
2
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
E
dwar
d
Z
.
Y
a
ng
Re
n
a
me
n
ewline normalization directive to so
m
et
h
i
n
g
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
T
omasz Muras
Make
n
ewline
norma
l
izat
i
on optional
.
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Y
ang
Shift to
4
.
2
.
0 re
l
ea
s
e
cycle
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Y
ang
A
dd sup
p
ort for file:// URI
s
che
m
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Yang
Update TODO
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
E
dward Z
.
Yan
g
Implem
e
nt HTML
.
Fla
s
hAllowFullScreen
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
Edward
Z
.
Yang
Add %CS
S
.
ForbiddenProperties
d
irective
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
E
dward Z
.
Y
a
ng
A
d
d docum
e
ntation
ab
o
ut configurati
o
n directive types
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
Edward Z
.
Yang
Re
w
ord docu
m
entation to be
cl
e
a
r
er,
and give warning
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-08-27
Edward Z
.
Yang
Fix Mac
Sno
w
Leopard APC bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-30
Edward Z
.
Yang
T
i
ghten
up ignore
s
pec
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-30
Ed
w
ar
d
Z
.
Yang
Actually make URI
.
DisableResources do
som
e
t
hin
g
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-21
Edward
Z
.
Ya
n
g
Added %Co
r
e
.
RemoveProcessing
I
nstructions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-18
Ed
w
a
r
d Z
.
Y
a
ng
Fix
i
mproper handl
i
n
g of
I
E con
d
itional
c
omments
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Y
a
ng
Release 4
.
1
.
1
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward
Z
.
Yang
Fix
u
ndefined index w
a
rnings i
n
mai
n
t
e
n
ance scripts
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Yang
Fix
b
ug in par
s
i
ng single attribut
e
with entities
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Yang
Rewrite C
S
S
u
rl() a
n
d
font-f
a
m
i
l
y ou
t
put
l
ogic
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-21
Edward Z
.
Yang
Make
test script less chatt
y
w
h
e
n log_erro
r
s is o
n
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-21
Edward Z
.
Yan
g
Remo
v
e shebang
and
+
x from test script
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-18
E
d
w
ard Z
.
Y
a
ng
Fix inf
i
nite loop involv
i
n
g
w
rapping formedness
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-05
E
dw
a
rd Z
.
Yang
Fix bug in background-p
o
sition with ce
n
ter keyword
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-04
E
dward Z
.
Yang
Emit er
r
o
r
s when body is
extr
a
cted
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
Edw
a
rd Z
.
Ya
n
g
Relea
s
e 4
.
1
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
Edward Z
.
Y
a
ng
Mute ST
R
ICT errors from
C
SSTidy
and
don
'
t
ru
n
PEARSax
3
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
E
dward Z
.
Yang
Al
w
ay
s
quote the contents o
f
u
rl() in CSS
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-17
E
d
ward Z
.
Yang
Remove +x bit f
r
om RemoveSp
a
nsWithoutAt
t
ributes
.
p
h
p
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-30
E
dward
Z
.
Yang
S
u
pport for flashva
r
s in HTML
.
S
a
feE
m
bed
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-10
E
dward Z
.
Y
ang
Handle
<ol>
<
ol> pr
o
perly by adding mis
s
ing <li> tag
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-09
Edward Z
.
Yang
Improve ha
n
dling of malforme
d
object parameters
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-08
Edward
Z
.
Yang
Remove call-time p
a
ss-by
-
re
f
eren
c
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-08
Ed
w
ard Z
.
Y
ang
Implement
Inter
n
et Explor
e
r compati
b
ilit
y
c
o
d
e for
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
next