repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Test for catastrophic backtracking.
2012-05-02
E
d
ward Z
.
Y
a
ng
Us
e
prepend for autoloading on PHP
5
.
3+
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-04-27
Edward Z
.
Yang
Support for safe e
x
ter
n
al sc
r
ipts via
explic
i
t whitelist
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-17
Edward Z
.
Yang
Fix
p
r
oblem wher
e
stacked A
t
trTrans
f
orms c
l
o
b
ber ea
c
h
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-02
Edwa
r
d Z
.
Yang
Act
u
ally
m
ake URI
.
Disable
R
esources do something
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-02-18
Edward Z
.
Yang
Bugfix:
_bl
a
nk
n
ot blank
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-25
Edward Z
.
Yang
Update NEWS
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-19
Edwa
r
d Z
.
Yang
Releas
e
4
.
4
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Y
a
n
g
Make all of the tes
t
s wo
r
k on all PHP versions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Y
a
ng
A
void doing s
t
u
p
idly clever re
f
lect
i
on
tricks that
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edwa
r
d Z
.
Y
ang
M
odernize some of
t
he testing facilities
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-17
Edward Z
.
Y
a
ng
Tig
h
ter CS
S
selector validation
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
Edward Z
.
Yang
Remark about bypass
i
ng host list
w
ith
p
unycode
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
Edwa
r
d
Z
.
Yang
Optional suppor
t
for
IDNAs with PEAR Net_IDN
A
2
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-03
Edward Z
.
Y
ang
Remove
PEARSax3 lexer
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-30
Edward Z
.
Yang
M
a
k
e forms work for transition
a
l doctypes
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
Edwa
r
d
Z
.
Y
ang
Remove ins
c
rutabl
e
TODO, optionalize another
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
Edw
a
rd
Z
.
Yang
Add n
o
te a
b
out supersedi
n
g modules
i
n TODO
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward
Z
.
Yang
Bump mino
r
version number to 4
.
4
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Y
a
ng
Add test for invalid S
a
feIframe
usage
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Y
a
ng
Add
m
ore attr
i
bu
t
i
o
ns
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Im
p
lement
%
HTML
.
AllowedComments and %HTML
.
A
llowedCommen
t
sRe
g
ex
p
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
E
dward Z
.
Yang
Fix br
o
ken t
a
ble c
o
nten
t
model, easily seen in XH
T
ML1
.
1
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
E
d
ward
Z
.
Ya
n
g
Properly
handle nested sublists by
f
oldi
n
g into prev
i
ous
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Im
p
lement
%H
T
ML
.
TargetBlank
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
Add is
B
enign
a
nd ge
t
DefaultScheme
meth
o
ds
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward
Z
.
Y
a
ng
Add a
l
ittle bit of documentation a
b
out c
o
ntexts for
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edw
a
rd Z
.
Yang
C
ore
.
Es
c
apeNon
A
SCIICharacters no
w
a
l
wa
y
s works, even
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edw
a
rd Z
.
Yang
Add
support
for scope a
t
tribute on t
d
a
nd th
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
E
dward
Z
.
Y
a
n
g
Add one more test
f
o
r
SP
L
a
u
toload
defaults
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yan
g
Fix ico
n
v truncat
i
on bu
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Edward Z
.
Y
a
n
g
R
e
m
ove spuriou
s
abstrac
t
definition; PHP 5
.
4 doesn
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
E
dward Z
.
Yan
g
Don't u
n
set
parser var
i
able;
plays poorly wi
t
h ser
i
aliz
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Ed
w
ard Z
.
Yang
Typ
o
fix
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Ed
w
ard Z
.
Yang
Don't ad
d
nof
o
l
low
for matching host
s
, generalize
t
h
i
s
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edw
a
rd
Z
.
Yang
Update INSTALL to a
v
oid missing co
n
fig snafu, u
p
date
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Y
ang
Do not duplic
a
te nofollow attribute in transform
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-19
Edward Z
.
Yang
Exp
l
ici
t
ly initialize anonModule to
null
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
E
d
war
d
Z
.
Ya
n
g
URI
.
Munge munges
https t
o
http URIs
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
Edward
Z
.
Yang
Color keywords n
o
w case-insens
i
tive
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
E
dward Z
.
Y
a
ng
R
el
e
ase 4
.
3
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward
Z
.
Yang
Fi
x
C
SS URL innerHTML/cssTe
x
t
escap
i
ng b
u
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
P
r
otect against font fam
i
ly
innerHTML/cssText attacks
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edwa
r
d Z
.
Yang
Fix Internet Explor
e
r in
n
erH
T
ML bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-24
E
d
w
a
rd Z
.
Yang
Imple
m
ent CSS
.
Al
l
owedFonts
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-22
E
dward Z
.
Yang
D
o
n
'
t aut
o
close if
no parents support t
h
e tag
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-21
Edward Z
.
Y
an
g
S
a
fety u
p
dat
e
f
or
n
e
sted
ul tes
t
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-17
Edward Z
.
Y
a
n
g
Fix E
_
NOTICE from
in
d
exing into empty string
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-02-27
Edward Z
.
Yan
g
Fix mi
s
sing
n
umeric
e
ntitie
s
(s
h
ows up when Di
r
ectLexi
n
g)
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-25
Edward
Z
.
Y
a
ng
Dra
m
atically rewrit
e
null
host URI
h
andling
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-22
E
d
ward Z
.
Y
ang
F
ix
e
mbeddi
n
g
fl
a
sh on non-IE browsers an
d
allow
m
ore
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-14
Edward Z
.
Y
ang
Bum
p
vers
i
on number for Cache
.
SerializerPermissions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-13
Ed
w
ard Z
.
Y
a
n
g
Check t
h
at argv is set before operating on it
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-31
Edward Z
.
Yang
Fix bad int
e
raction between bootstr
a
p auto
l
oader
and
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-30
E
dward Z
.
Yan
g
Fix two
b
u
g
s
with caching
of customize
d
ra
w
definiti
o
ns
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-21
Edwar
d
Z
.
Ya
n
g
Update PHP
T
instruct
i
ons
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edward
Z
.
Ya
n
g
Add initial impleme
n
tat
i
on
of CSS
.
Trusted
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edward Z
.
Yang
Add s
a
nity
c
heck agai
n
st ze1
_
c
omp
a
tibility_mode
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Ed
w
ard Z
.
Yang
Fix incorrect PEARSax3 test assertion
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-29
Edward Z
.
Yang
Check if schema
.
ser was corr
u
pted
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-28
Edwa
r
d Z
.
Yang
Fix removal of id with DirectLex
by prese
r
vin
g
ar
m
o
r
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edwar
d
Z
.
Y
ang
Escape CDATA before handling c
o
n
dit
i
ona
l
c
o
m
men
t
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edward
Z
.
Ya
n
g
Impleme
n
t HTML
.
N
ofollow for
external links
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edwar
d
Z
.
Yang
Make IE conditional comment matching ungreedy
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-15
E
dward Z
.
Ya
n
g
R
e
lease 4
.
2
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Yang
R
e
name
newline
norm
a
li
z
a
tion directive to
s
omething
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Yang
Shi
f
t to 4
.
2
.
0 relea
s
e cycle
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Yang
Add
suppo
r
t fo
r
file:// URI scheme
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-09
E
dward Z
.
Yan
g
Update TODO
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Yang
Implement HTML
.
FlashAl
l
owFullScreen
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-04
E
dward
Z
.
Yang
Add %CSS
.
Forbi
d
d
e
n
P
roper
t
ies di
r
ective
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-04
Edward Z
.
Yang
Add docum
e
nt
a
tion about configu
r
ation direct
i
v
e
types
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-04
Ed
w
a
r
d Z
.
Yang
Reword documentatio
n
to b
e
clearer, and
give
w
ar
n
ing
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-08-27
Ed
w
ard Z
.
Y
a
ng
Fix
M
ac
S
now
Le
o
pard
A
PC bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-06-30
Edward Z
.
Yang
Tighten up ignore spec
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-06-30
Edwar
d
Z
.
Yang
Ac
t
ually make
U
RI
.
DisableResources do so
m
e
t
hi
n
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-06-21
Ed
w
ard Z
.
Yang
Adde
d
%Core
.
R
e
m
oveProcessi
n
gInstr
u
c
tions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-06-18
Edw
a
rd Z
.
Y
a
ng
F
i
x improper hand
l
ing of IE
condi
t
ional comments
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-06-01
Edwar
d
Z
.
Ya
n
g
Rel
e
ase 4
.
1
.
1
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Yang
Fix undefined index warnings i
n
maintenance scrip
t
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Yang
Fi
x
bug in
parsing single attr
i
b
ute with entities
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Yang
Rewr
i
te CSS url(
)
a
nd f
o
nt-fami
l
y output logic
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-05-21
Edward Z
.
Yang
M
ake
test script less ch
a
t
t
y
when log_errors is o
n
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-05-21
Edward Z
.
Yan
g
Remove shebang
a
nd +x f
r
om test script
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-05-18
Edward Z
.
Yang
Fix in
f
inite loop involv
i
ng wr
a
pping
formedness
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-05-05
Edward Z
.
Y
a
ng
Fix bug in backgr
o
und-positi
o
n with center keyword
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-05-04
Edward Z
.
Yang
Emit err
o
rs whe
n
body
i
s extrac
t
e
d
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-04-26
Edward Z
.
Yan
g
R
e
lease 4
.
1
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-04-26
E
d
w
ard Z
.
Ya
n
g
Mute STRICT
e
rrors from CS
S
Tidy
an
d
don't run PEARSax3
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-04-26
Edward Z
.
Yang
Al
w
ays quote the
conte
n
ts of url(
)
in CSS
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-04-17
Edw
a
rd Z
.
Yang
R
emove
+
x bit
fro
m
Remov
e
S
p
a
nsWit
h
outAttributes
.
php
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-30
Edward
Z
.
Yang
Support
f
o
r flas
h
vars in HTML
.
SafeEmbed
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-10
Edward Z
.
Yang
Handle <ol>
<
ol
>
properly
b
y
a
d
ding missing <
l
i
>
tag
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-09
Edward Z
.
Yang
I
m
p
r
ove han
d
l
ing of malformed ob
j
ect par
a
m
e
ters
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-08
Edwar
d
Z
.
Yang
R
emove ca
l
l-time pass-by-reference
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-08
Edward Z
.
Yang
Implement In
t
e
rnet Explorer compatib
i
lity code for
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-08
E
d
w
a
rd Z
.
Ya
n
g
Trunc
a
te alt tex
t
f
rom src if it's too long
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-08
Edwar
d
Z
.
Y
a
ng
Support
flashvars
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-08
Edwa
r
d Z
.
Yang
Implement
dat
a
U
R
I sch
e
m
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-03-07
Edward Z
.
Yang
Sup
p
ort YouTu
b
e
slid
e
show embedding
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-02-27
E
dward Z
.
Yang
Fi
x
extant broke
n
PEARSax3
p
arsing patterns
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
next