repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Fix quadratic behavior in DOMLex due to array_shift.
2013-09-17
Edwar
d
Z
.
Y
ang
Fix
q
uadra
t
ic behavior in DOMLex due to arra
y
_shift
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-09-14
Edward Z
.
Yang
Properly use HMAC for secure munging
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-08-18
Marcus Bointon
PSR-2
r
eformatt
i
ng
P
HP
D
o
c c
o
rrecti
o
ns
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
E
dward Z
.
Y
ang
Tighten
up invariants
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
Edward Z
.
Yang
Explicit
l
y specify decora
t
or na
m
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
Edw
a
rd
Z
.
Yang
New directive %Core
.
AllowHostn
a
m
eUndersco
r
e
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-18
Edward Z
.
Yang
Add n
o
te fall through
i
s intentional
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-17
Marcus Bointon
Fix var name con
f
lict in
loadArray
commit
|
commitdiff
|
tree
2013-07-17
Synchro
A bu
n
ch of PHPdoc and php codesniffer corrections
.
.
.
commit
|
commitdiff
|
tree
2013-06-06
Edward Z
.
Yang
Make
l
ist nestin
g
test more sensi
t
ive
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-22
Ed
w
a
rd Z
.
Ya
n
g
Use in
f
o
_
par
e
nt_def to get parent information, sin
c
e
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-21
Edward Z
.
Yang
Ignore commas and nbsps
for li
n
kificati
o
n
.
Thanks nAS
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-18
Edward Z
.
Yang
Doc
f
i
x
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-04-16
E
dward
Z
.
Yang
Make URI parsin
g
algorithm
m
o
r
e strict
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-21
Edward Z
.
Yang
Fix NEWS entry
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-18
Edward Z
.
Yang
Release 4
.
5
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-17
E
d
w
ard Z
.
Y
an
g
A
d
d
%Co
r
e
.
D
i
s
ableExcludes directive
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-12-21
Mic
h
ael Tibb
e
n
Add
required
c
onstant for comp
o
ser autoloading
commit
|
commitdiff
|
tree
2012-10-27
E
d
ward
Z
.
Yang
U
se SHA
-
1 instead of MD5
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edward
Z
.
Yang
B
l
acklist more tags from RemoveEmpt
y
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Yan
g
Cle
a
nup after data vali
d
a
t
ion
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Yan
g
Do checks aga
i
nst i
c
onvAvailab
l
e
b
ecause PHP 5
.
4 has
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-11
Edward
Z
.
Yang
Comment for bug tha
t
n
e
eds to get fixed
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-11
Edward Z
.
Yang
CSS p
r
o
p
er
t
ies page-break
-
*
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-09-16
Rob Lo
a
ch
Aut
o
loa
d
in
g
s
u
pport f
o
r Com
p
oser
commit
|
commitdiff
|
tree
2012-07-30
E
dwa
r
d
Z
.
Y
a
ng
Fi
x
bug wi
t
h n
o
n-lower ca
s
e color names in HTML
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-07-27
E
dward Z
.
Yang
Perm
i
t underscores in font
-
fam
i
lies
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-06-16
Edwar
d
Z
.
Yang
More suppo
r
t for white-s
p
ace
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-06-02
E
dwa
r
d Z
.
Y
ang
Don't low
e
r-case co
m
ponents of backg
r
ound
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-26
Edwar
d
Z
.
Y
a
ng
Su
p
port for in
l
ine-b
l
oc
k
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-15
Edward Z
.
Yang
Fix i
n
AttrT
r
ansform_N
o
follow
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-02
Edwa
r
d Z
.
Y
a
ng
Us
e
prep
e
nd for au
t
o
l
oading on PHP 5
.
3+
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-04-27
Edward Z
.
Yang
Support for safe external scripts via expl
i
cit whit
e
list
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-17
Edward
Z
.
Yang
Fix problem whe
r
e sta
c
ked AttrTransforms clobber each
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-16
Ben
j
am
i
n Steininger
Add composer
.
j
s
on file
f
or easy in
s
tall via composer
.
commit
|
commitdiff
|
tree
2012-03-02
Edward
Z
.
Yang
A
c
tually make URI
.
Disable
R
esourc
e
s do something
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-02-18
Edw
a
r
d Z
.
Yang
Bugfix:
_blank not b
l
a
n
k
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-25
Edward Z
.
Yang
Update NEWS
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-19
Edward Z
.
Yang
R
elease
4
.
4
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
Make a
l
l
o
f the tests work on
a
l
l PHP versions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
Av
o
id doi
n
g stupid
l
y
c
lever refl
e
ct
i
on tricks
that
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
Modernize some o
f
the testin
g
fa
c
il
i
ties
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-17
Ed
w
a
r
d Z
.
Yang
Tigh
t
er CSS selector validation
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
E
dward Z
.
Yang
Rem
a
rk about bypassing
host list wit
h
punyco
d
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
Edward Z
.
Yang
Option
a
l su
p
port for IDNA
s
with PE
A
R Net_
I
D
N
A2
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-03
Edward Z
.
Yang
Remove
PEARS
a
x3 lexer
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-30
Ed
w
a
r
d Z
.
Yang
Make forms wo
r
k for
transit
i
onal
docty
p
es
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
E
d
war
d
Z
.
Yang
Remove
inscrutable
T
ODO, opti
o
nalize ano
t
her
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
Edward Z
.
Y
a
ng
A
d
d
note about s
u
persed
i
ng
m
odu
l
es
in TODO
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Y
ang
B
u
mp
m
inor version number to 4
.
4
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Add test for i
n
valid S
a
feI
f
ra
m
e
u
s
a
g
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
B
r
adley M
.
Froehle
Impleme
n
t
Iframe module, and provide %HTML
.
Saf
e
Iframe
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
E
dward Z
.
Yang
Add
m
ore attr
i
but
i
o
n
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Implement %HTML
.
Allo
w
edComments and
%HTML
.
AllowedCommentsRegexp
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edwa
r
d Z
.
Yang
Fi
x
broken table c
o
ntent model, easily seen in XHTM
L
1
.
1
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Pr
o
perly handle
nes
t
e
d
su
b
list
s
by foldin
g
i
n
t
o
pr
e
vious
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Implemen
t
%HTML
.
TargetBlank
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Ed
w
a
rd
Z
.
Yang
Add isBenign and getDefaultScheme methods
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Y
a
ng
Add a little bit of
d
ocumentation a
b
out
contexts for
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Ed
w
a
r
d
Z
.
Yang
Cor
e
.
Esc
a
peNonAS
C
II
C
h
aract
e
rs now always w
o
rks, even
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Y
a
ng
Add supp
o
r
t for scope attri
b
u
te on td and th
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Y
a
ng
Add one more t
e
st for SP
L
a
u
toload defaults
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Ya
n
g
Fix iconv tru
n
cation bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Edward Z
.
Yang
Remove spu
r
i
o
us abstract definition; PHP
5
.
4
doesn
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Edward Z
.
Yang
Don't unset pars
e
r variable
;
plays poor
l
y with ser
i
alize
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Ed
w
ar
d
Z
.
Yang
Typofix
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Ed
w
ar
d
Z
.
Y
ang
Don't add nofollow
for
m
atching
h
osts, generalize this
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Yang
Update INS
T
ALL
to
a
void missing
config snafu, update
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edw
a
r
d Z
.
Ya
n
g
D
o
n
o
t duplicate nofoll
o
w
attribute
i
n transform
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-19
E
dward Z
.
Yan
g
E
xplicitly in
i
tia
l
ize
a
nonModule
t
o nu
l
l
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
Edward Z
.
Y
a
ng
URI
.
Munge
munges http
s
t
o http URIs
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
Edw
a
r
d
Z
.
Y
ang
Color keywo
r
ds now case-insen
s
itive
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
Re
l
e
a
se 4
.
3
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
Fix CSS URL inner
H
TML/
c
ssTe
x
t es
c
aping bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
E
dw
a
r
d
Z
.
Yang
Protec
t
a
g
a
ins
t
f
ont fam
i
ly innerHTML/cssTex
t
attacks
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Y
a
ng
Fix Internet
Ex
p
lore
r
innerHTM
L
bu
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-24
Edw
a
rd Z
.
Yang
I
mpleme
n
t
CSS
.
AllowedFonts
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-22
Ed
w
ard Z
.
Yan
g
Don't autoclose if no parents support the t
a
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-21
E
d
ward Z
.
Yang
S
afety update for nested
u
l test
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-17
Edward Z
.
Y
a
n
g
Fix E_NOTI
C
E from inde
x
i
n
g in
t
o em
p
ty
s
tring
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-02-27
Edward Z
.
Yang
Fix missing numeric enti
t
ies (sh
o
w
s up when Dire
c
tLexing)
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-25
Edw
a
rd Z
.
Yang
Dramatic
a
lly r
e
write
n
u
ll host URI h
a
ndling
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-22
Edward Z
.
Yang
Fix embed
d
ing flash on non-I
E
browse
r
s
and
allow
m
o
r
e
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-19
Maxi
m
Krizhanovsky
I
t
erative
t
ravers
a
l of
D
O
M
.
commit
|
commitdiff
|
tree
2011-01-14
E
dward Z
.
Y
ang
Bump
version number for Cache
.
Ser
i
al
i
zerPe
r
miss
i
ons
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-13
Petr Skod
a
A
d
d
n
ew Cache
.
S
e
rializ
e
rP
e
rmiss
i
ons option
.
commit
|
commitdiff
|
tree
2011-01-13
Edw
a
rd Z
.
Yang
Check that arg
v
i
s
s
e
t b
e
fore operating on it
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-31
Edward Z
.
Yang
Fix bad interact
i
on
bet
w
e
e
n
bootstra
p
a
u
toloader and
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-30
Edward
Z
.
Yan
g
Fix two bugs with caching o
f
c
ust
o
miz
e
d
raw defi
n
i
t
io
n
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-21
Ed
w
ard Z
.
Y
a
ng
U
p
da
t
e PH
P
T
instructions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edward Z
.
Yang
Add initial implemen
t
ation of CSS
.
Tr
u
sted
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edward Z
.
Yang
A
dd sanity che
c
k
a
gains
t
ze1_compatibility_mode
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edwar
d
Z
.
Yang
F
i
x incorrect P
E
ARSax
3
test assertion
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-29
Edwar
d
Z
.
Yang
Check if s
c
hema
.
ser was co
r
rupted
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-28
Edwar
d
Z
.
Ya
n
g
Fix removal
o
f id with D
i
re
c
tLex
by preserving armor
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-28
N
ick Po
p
e
All
o
w
non-
s
tatic autoload methods
w
/ PHP >=
5
.
2
.
11
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edward
Z
.
Yan
g
Escape CDATA b
e
f
ore
h
and
l
ing cond
i
tiona
l
c
o
mments
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
E
d
ward
Z
.
Yang
I
mplement HTML
.
Nofoll
o
w for
e
x
t
ern
a
l links
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edward Z
.
Yang
Make
IE
co
n
ditional com
m
ent matching ungreedy
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-15
E
dwa
r
d
Z
.
Yang
R
elease 4
.
2
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
next