repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Properly handle context variables that are NULL.
2013-10-13
Edward
Z
.
Yang
Properly handle con
t
e
x
t variable
s
that are NULL
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-10-13
Edward Z
.
Yang
Im
p
lementation of a
Z
i
pper
,
f
o
r efficient splice
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-10-13
E
dward Z
.
Yang
Impr
o
ve g
i
tignore
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-09-17
Edw
a
r
d Z
.
Yang
Fix
q
u
ad
r
ati
c
behavior in DOMLex d
u
e to ar
r
ay_shi
f
t
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-09-14
Ed
w
ard
Z
.
Y
ang
Properl
y
use HMAC for secu
r
e mungin
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-08-18
Marcus
Boint
o
n
P
S
R-2
ref
o
rmat
t
ing PHPDoc corr
e
ctio
n
s
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
E
d
w
ard Z
.
Y
ang
Tighten
u
p invariants
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
Edwa
r
d Z
.
Yang
Explicitly specify
d
ecorator name
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
Ed
w
ard Z
.
Yang
New
directiv
e
%Core
.
A
l
l
o
wHostn
a
meUnderscore
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-18
Ed
w
ard
Z
.
Y
ang
Add note fall through
is intention
a
l
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-17
Mar
c
u
s
Bointon
Fix
v
ar name confl
i
ct in loadAr
r
ay
commit
|
commitdiff
|
tree
2013-07-17
Sy
n
chro
A bunc
h
of
P
H
P
d
oc
and php codesniffe
r
corr
e
ction
s
.
.
.
commit
|
commitdiff
|
tree
2013-06-06
Edward Z
.
Yang
Make list nestin
g
test more sensitiv
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-22
Edw
a
rd Z
.
Yang
Use info_pa
r
ent_def t
o
get parent infor
m
ation, since
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-21
Edward Z
.
Ya
n
g
Ignore commas and
n
bsps
fo
r
linkifi
c
at
i
on
.
Thanks nAS
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-18
Edwa
r
d
Z
.
Y
ang
Doc fix
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-04-16
E
d
w
a
r
d Z
.
Yang
Mak
e
URI parsin
g
algorithm more
s
trict
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-21
Edward Z
.
Yang
Fix NEWS entry
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-18
Edward Z
.
Yang
Release 4
.
5
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-17
E
d
ward Z
.
Yan
g
Add %C
o
r
e
.
Dis
a
bleExcludes
direc
t
iv
e
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-12-21
Michael Tib
b
en
Add req
u
ired
constant
for composer
a
utoloadin
g
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Ya
n
g
Use SHA-1 instead of
M
D5
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
E
dward Z
.
Y
a
ng
B
l
acklist
more ta
g
s from
R
emoveEmpty
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edw
a
rd Z
.
Yang
C
l
eanup after d
a
ta va
l
idation
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Ya
n
g
D
o
checks
a
gain
s
t
ic
o
nvAvailable beca
u
se PHP
5
.
4 has
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-11
Edwar
d
Z
.
Yang
C
omment
for bug
t
hat nee
d
s
to get fixe
d
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-11
E
d
ward Z
.
Yang
C
SS proper
t
i
es page-break-*
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-09-16
Rob Loa
c
h
Autoloading support for
C
omposer
commit
|
commitdiff
|
tree
2012-07-30
Edward
Z
.
Yang
Fix bug with
non-lo
w
er ca
s
e col
o
r nam
e
s in HTML
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-07-27
Edwar
d
Z
.
Y
a
ng
Permit
u
nderscores in
f
on
t
-
fa
m
ilies
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-06-16
Edward Z
.
Yang
More supp
o
rt for whit
e
-sp
a
c
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-06-02
Edward Z
.
Y
a
ng
Don't
lower-case component
s
of backgroun
d
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-26
Edwa
r
d
Z
.
Yang
Su
p
por
t
for inline-b
l
ock
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-15
E
d
w
ard Z
.
Ya
n
g
F
i
x in AttrTransf
o
r
m_Nofollow
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-02
E
d
ward Z
.
Ya
n
g
Use
prepend for autoloading on PH
P
5
.
3
+
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-04-27
Edward
Z
.
Yang
Support fo
r
safe external s
c
ripts via explicit whit
e
list
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-17
Edwa
r
d
Z
.
Y
a
ng
Fix
probl
e
m
w
here
s
ta
c
ked AttrT
r
ansf
o
rms clobber each
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-16
Benjam
i
n
S
teining
e
r
A
dd compos
e
r
.
json file for easy
in
s
tall v
i
a composer
.
commit
|
commitdiff
|
tree
2012-03-02
Edward Z
.
Y
a
ng
Actually make URI
.
DisableR
e
sour
c
es
do so
m
ething
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-02-18
E
d
ward Z
.
Yang
Bugfix
:
_b
l
ank not blank
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-25
Edw
a
rd Z
.
Yan
g
Update NEW
S
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-19
E
dward
Z
.
Yan
g
Release 4
.
4
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edw
a
rd Z
.
Yang
Make all of th
e
tests w
o
rk on
a
l
l PHP
v
ersions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
E
d
ward Z
.
Yang
A
void doing stupidly
c
lever r
e
flection tricks
that
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
Mode
r
nize some of the t
e
sting
facil
i
ties
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-17
Edward Z
.
Yang
T
igh
t
er C
S
S selec
t
or valid
a
tion
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
Ed
w
ard Z
.
Yang
R
e
mark about bypassing host list with punycode
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
Edward Z
.
Yang
Opti
o
n
al suppo
r
t for
I
DNAs with PEAR Net_IDNA
2
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-03
Edward Z
.
Y
ang
Remove PEARSax3 l
e
xer
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-30
Edward Z
.
Yang
M
a
ke forms work for transit
i
onal doctypes
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
Edwar
d
Z
.
Yang
Remove inscrutable TODO,
opti
o
nal
i
ze a
n
o
th
e
r
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
E
dward Z
.
Yang
Add n
o
te ab
o
ut
s
u
p
ers
e
ding mo
d
u
l
es i
n
TO
D
O
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Ed
w
ard Z
.
Yang
B
ump minor version
n
umbe
r
to
4
.
4
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
A
d
d t
e
st
for inv
a
lid SafeIframe us
a
g
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
B
radl
e
y
M
.
Froehle
Implement
I
frame module, and provide %H
T
ML
.
SafeI
f
rame
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Ed
w
a
r
d Z
.
Yan
g
A
dd mor
e
attr
i
bu
t
ions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Y
a
n
g
I
mpleme
n
t %HT
M
L
.
AllowedComments and %HTML
.
All
o
wedComm
e
nts
R
egexp
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
F
ix b
r
oken table co
n
ten
t
model, easily
s
een
in XH
T
ML1
.
1
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yan
g
Properly handle nested
s
ubl
i
sts
b
y folding in
t
o previous
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward
Z
.
Yang
Implement %HT
M
L
.
T
arg
e
tB
l
ank
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
Add isBen
i
gn and getDefau
l
tS
c
heme methods
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edw
a
rd Z
.
Yang
Add a little bit of document
a
t
ion about contexts for
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Y
a
ng
Core
.
EscapeNonAS
C
IICharacters
now alwa
y
s w
o
rks, even
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edw
a
r
d
Z
.
Yang
Add support for scope a
t
tr
i
bu
t
e on td an
d
th
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
Ad
d
one
m
o
r
e
test for SPL a
u
tol
o
a
d
defaults
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
Fi
x
iconv truncati
o
n bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Edward
Z
.
Yang
Remove spur
i
o
us abstract defini
t
i
o
n
;
P
H
P 5
.
4 does
n
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Ed
w
ard Z
.
Yang
Don'
t
u
nset
p
arser va
r
ia
b
le
;
plays poorly w
i
th seriali
z
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edward
Z
.
Yang
Typo
f
ix
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Y
an
g
Don't add nofollow for matching hosts
,
generalize
this
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edward
Z
.
Yang
Upda
t
e IN
S
T
A
LL
t
o avoid missing config snafu, update
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edwar
d
Z
.
Yang
Do not dupli
c
ate nofollow a
t
tribute in transform
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-19
Edward Z
.
Y
a
ng
Expli
c
itly initialize anonModule to nul
l
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
E
d
ward Z
.
Yang
URI
.
M
ung
e
munges htt
p
s to http URIs
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
Edward
Z
.
Yang
Color keyw
o
r
d
s
n
o
w c
a
se-insen
s
itive
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Y
ang
Rel
e
a
se
4
.
3
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
Fix
C
SS UR
L
in
n
erHTML
/
cssText escaping
b
u
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
Protect aga
i
nst
font family innerHTML/cssText attacks
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
E
dwar
d
Z
.
Yang
Fix Int
e
rnet Ex
p
lorer inner
H
TML b
u
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-24
Edward Z
.
Yang
I
mplement C
S
S
.
AllowedFo
n
ts
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-22
Edwar
d
Z
.
Yang
Don't
a
uto
c
lose if no p
a
rents
s
u
pport the
t
ag
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-21
Ed
w
ard Z
.
Y
ang
Safety update
f
or nested ul test
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-17
Edward Z
.
Yang
Fix E_NOTICE from
in
d
exing into empty string
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-02-27
Edward Z
.
Y
a
ng
F
i
x missi
n
g numer
i
c ent
i
t
i
es (shows
u
p wh
e
n Direc
t
Lex
i
ng)
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-25
Edward
Z
.
Yang
Drama
t
ical
l
y rewrite null
host URI ha
n
dling
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-22
Edw
a
rd Z
.
Y
ang
F
ix
embedding
f
lash on
n
on-IE b
r
owsers and allow
more
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-19
Max
i
m K
r
izhanovsky
I
t
e
rative tra
v
e
rsal of DOM
.
commit
|
commitdiff
|
tree
2011-01-14
E
d
ward Z
.
Yang
Bump versio
n
numb
e
r f
o
r
Cac
h
e
.
SerializerPermissions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-13
Pet
r
S
k
oda
Add new Cac
h
e
.
Seri
a
lizerPermi
s
sions o
p
t
i
on
.
commit
|
commitdiff
|
tree
2011-01-13
Edwar
d
Z
.
Yang
Che
c
k that argv is
s
et before operating on it
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-31
E
d
w
ard Z
.
Yang
F
ix bad i
n
teraction be
t
ween bootstrap autoloader an
d
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-30
Edward Z
.
Yang
Fix two bugs wit
h
caching of
cu
s
tomized raw definitions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-21
Edward
Z
.
Yang
Update
P
HPT instruction
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edwar
d
Z
.
Ya
n
g
A
d
d
initial implem
e
ntation of CS
S
.
T
r
us
t
ed
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edward Z
.
Y
a
n
g
Add sanit
y
check against z
e
1
_co
m
patibil
i
t
y
_
m
ode
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Edwar
d
Z
.
Y
a
ng
Fix incorre
c
t
PEAR
S
ax
3
test assertion
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-29
Edward Z
.
Y
an
g
Check if schema
.
se
r
w
a
s corrupted
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-28
Edward Z
.
Yang
F
i
x remova
l
of i
d
with Dire
c
tLex
b
y
pres
e
rving armor
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-28
Ni
c
k Pope
Allow non-static a
u
to
l
oad
m
eth
o
ds w
/
PHP >=
5
.
2
.
11
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edward Z
.
Yang
Escape
C
D
A
T
A before h
a
ndl
i
ng
c
ondition
a
l comme
n
ts
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
next