repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Protect against font family innerHTML/cssText attacks.
2011-03-27
Edward Z
.
Ya
n
g
Protect against font family innerHTML/cssText attacks
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
E
d
w
ard Z
.
Yang
Fix Internet
E
xplo
r
e
r inn
e
rHTML bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-24
Edward Z
.
Yang
Impleme
n
t
CSS
.
AllowedFonts
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-22
Edw
a
rd Z
.
Y
a
ng
D
on't
a
utoclose if no parents
s
upp
o
rt the tag
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-21
Edw
a
rd Z
.
Yang
Sa
f
ety
u
p
date for
n
ested ul
tes
t
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-17
Ed
w
ard Z
.
Yang
F
i
x E_NOTICE from
indexing into empty str
i
ng
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-02-27
E
d
ward
Z
.
Yang
Fix
missing
n
ume
r
ic entitie
s
(show
s
up whe
n
D
i
r
ectLexing)
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-25
Edward Z
.
Yang
Drama
t
ically rewrite null h
o
st
URI handling
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-22
E
dwa
r
d Z
.
Y
a
n
g
Fix embedding flash on non-
I
E browsers
and allow more
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-19
Maxim Krizhano
v
sky
It
e
rat
i
ve traver
s
al of DOM
.
commit
|
commitdiff
|
tree
2011-01-14
Edw
a
rd Z
.
Yang
Bump version numb
e
r for Cac
h
e
.
S
erializerPerm
i
s
s
i
ons
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-13
Petr Skoda
Add new Cache
.
Serial
i
ze
r
P
e
r
missions opt
i
on
.
commit
|
commitdiff
|
tree
2011-01-13
Edward Z
.
Yang
C
heck
t
hat argv is set b
e
fore op
e
rati
n
g
on it
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-12-31
Edward Z
.
Yang
Fix ba
d
interac
t
ion between bootstra
p
autoloader a
n
d
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-12-30
Edward
Z
.
Yang
Fix two bugs with
caching of customized raw definitions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-21
Edward Z
.
Yang
U
pdate PHPT instruct
i
on
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
E
d
ward Z
.
Yang
Add initia
l
i
m
ple
m
e
ntation of
CSS
.
Trust
e
d
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edward Z
.
Yang
Add s
a
nity check against ze1_comp
a
tibility_mode
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
E
dward
Z
.
Yang
Fix incorrect PEARSax3 te
s
t assertion
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-29
Edward Z
.
Yang
C
heck if schema
.
ser was corru
p
t
e
d
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-28
Edwa
r
d Z
.
Yang
Fix remova
l
o
f
i
d with DirectLex b
y
preser
v
in
g
armor
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-28
Nick Pope
Allow non
-
stat
i
c auto
l
oad m
e
thods
w/
PHP >=
5
.
2
.
11
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edw
a
rd Z
.
Y
a
ng
E
s
cape CDATA before handling conditional comments
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Ed
w
ard Z
.
Yang
Im
p
leme
n
t HTML
.
Nofollow for
e
xter
n
al links
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edw
a
r
d
Z
.
Ya
n
g
Make IE conditional com
m
e
n
t
m
a
tching
u
ngreed
y
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Yang
Release 4
.
2
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
Edward
Z
.
Ya
n
g
Rename
n
ewline normali
z
at
i
on d
i
rectiv
e
to somethin
g
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
T
omasz
Mu
r
as
Make
n
ewline no
r
malization
o
p
tional
.
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Y
a
ng
Shift to 4
.
2
.
0 relea
s
e cycle
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Yang
A
d
d
su
p
p
ort for
f
i
le:// URI scheme
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
Edward
Z
.
Y
a
ng
Upd
a
te
TODO
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
Ed
w
a
rd Z
.
Yang
Imple
m
ent HTML
.
FlashAl
l
o
wFul
l
Screen
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
E
dward Z
.
Yang
Add
%
C
S
S
.
F
orbiddenProper
t
i
e
s directiv
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
Edwar
d
Z
.
Yang
Add documentat
i
on about c
o
nfigurati
o
n
directive types
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
Edwa
r
d Z
.
Yang
Reword d
o
cu
m
entation to be cle
a
rer, and give warning
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-08-27
E
dwar
d
Z
.
Yang
Fix Ma
c
S
n
ow Leopard APC
b
ug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-30
Edward
Z
.
Y
ang
T
i
ghten up
i
gnore
sp
e
c
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-30
Edward
Z
.
Yang
A
ctually make
URI
.
DisableResources do som
e
thing
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-21
Edwa
r
d Z
.
Y
ang
A
d
d
ed %Core
.
RemoveProce
s
singI
n
structions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-18
Ed
w
a
r
d Z
.
Yang
Fix
imp
r
oper handling o
f
IE
conditional comments
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Yang
Release 4
.
1
.
1
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Y
a
ng
Fix
unde
f
ined index
warn
i
ng
s
in
maintenance scripts
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Yang
Fix b
u
g in parsing single att
r
ibute wi
t
h entities
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edwa
r
d Z
.
Yang
Rewrite CSS url()
and font-family o
u
tpu
t
logic
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-21
E
d
ward Z
.
Yang
Ma
k
e
t
est scr
i
pt less chatty wh
e
n
log_er
r
ors is on
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-21
E
dward Z
.
Yang
Remove shebang a
n
d +x f
r
om
t
est scrip
t
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-18
Edward Z
.
Yang
Fix infini
t
e loop involvin
g
wrapping f
o
rmedness
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-05
Edward Z
.
Y
a
ng
Fix b
u
g in backgroun
d
-posit
i
on
w
ith
ce
n
t
e
r keyword
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-04
Edward Z
.
Yang
Emit errors when body is
extr
a
cted
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
Edward
Z
.
Yang
Release 4
.
1
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
Edward Z
.
Yang
Mute
S
TR
I
CT errors from CSSTidy and don't run PEA
R
S
a
x3
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
Edward Z
.
Yang
A
l
w
a
y
s
q
uote the contents of url() in CSS
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-17
Edward Z
.
Yang
R
e
move +x bit f
r
om
R
emoveSpansWith
o
u
t
Attributes
.
php
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-30
Ed
w
ard Z
.
Yang
Support for
f
lashvars in HTML
.
SafeEmbed
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-10
Edwa
r
d Z
.
Y
ang
H
a
n
d
le
<
o
l><ol>
properly by a
d
ding missing <li
>
t
ag
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-09
E
dward Z
.
Yang
Improve
ha
n
dling of malformed
object parameter
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-08
E
d
w
ard Z
.
Y
a
ng
Remove call-tim
e
pass
-
by
-
r
eference
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-08
E
d
ward
Z
.
Yang
Implem
e
nt Inter
n
e
t
Explorer compatibilit
y
code for
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-08
Edward Z
.
Yang
Tru
n
cate alt
t
ext from src if i
t
's too long
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-08
Edward
Z
.
Y
ang
Suppo
r
t flashvars
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-08
Edward Z
.
Y
ang
Implement
d
ata URI sc
h
eme
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-07
Paul Ston
e
I
mplement auto-format
t
er that
r
emoves
empty
spa
n
t
a
gs
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-07
Ed
w
ard Z
.
Ya
n
g
Support Yo
u
Tube slideshow em
b
edding
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-02-27
Brian DeRocher
Add boolea
n
va
l
ue fl
a
g fo
r
PEARSax3
for testing if
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-02-27
E
d
w
ard Z
.
Yang
Fix extant broken PEARS
a
x
3
parsi
n
g patterns
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-02-27
Edward Z
.
Yang
Manually w
o
rk aroun
d
P
E
ARS
a
x3 E_S
T
RICT errors
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-02-15
Edward Z
.
Yang
Add sheba
n
g
line to tests index scr
i
pt
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-02-15
E
d
w
a
rd Z
.
Yan
g
Fix au
t
oparagra
p
h bug with non-
i
nline
el
e
ments
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-08-28
E
dward Z
.
Yang
U
p
date TODO
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-08-28
Edward Z
.
Yang
S
u
pport proprietary height attrib
u
te on table
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-08-28
Edward Z
.
Y
ang
Gracefully deal w
i
th null
i
n
jectors
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-15
Edwa
r
d
Z
.
Yan
g
Up
d
a
t
e TODO
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-10
E
d
w
ard
Z
.
Yang
R
e
lease Phorum
m
odule 4
.
0
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-10
Ed
w
ard
Z
.
Yang
Add 4
.
1
.
0 release NEWS entry
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-09
Edward
Z
.
Yang
A
dd
doxygen doc scr
i
pts, a
n
d
fix package
.
php
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-08
E
d
ward
Z
.
Yang
Release 4
.
0
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-08
Edward Z
.
Y
ang
Update
c
onfiguratio
n
sca
n
ner
t
o
p
a
rse
new fo
r
mat
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-08
E
d
w
ard Z
.
Yang
Make extrac
t
Body not
t
e
rminate p
r
ematurel
y
o
n
f
i
rst
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-07
Edward Z
.
Yang
M
ak
e
%URI
.
M
u
nge r
e
s
pect %URI
.
H
ost (do
n
't
munge)
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2009-07-02
Edw
a
rd Z
.
Yang
X
H
TM
L
2 i
s
dea
d
.
Long live XHTML 2
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree