repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Use prepend for autoloading on PHP 5.3+
2012-05-02
Edward Z
.
Ya
n
g
Us
e
pr
e
pend f
o
r au
t
o
l
oading on PHP 5
.
3+
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-04-27
Edward Z
.
Y
a
ng
Support for safe exter
n
al script
s
vi
a
explicit whitelist
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-03-17
Edward Z
.
Yang
Fix pr
o
blem where stacked
AttrTransforms clobber
each
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-03-16
Benjamin S
t
ei
n
inger
Add comp
o
se
r
.
json file f
o
r
e
as
y
inst
a
ll via composer
.
commit
|
commitdiff
|
tree
2012-03-02
Edwa
r
d Z
.
Y
ang
Actually m
a
ke
U
RI
.
DisableResources do somethi
n
g
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-02-18
Edward Z
.
Yang
B
ugfix: _blank not bla
n
k
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-25
Edward Z
.
Yang
Update NEWS
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-19
Edward Z
.
Yang
Re
l
ea
s
e 4
.
4
.
0
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Y
ang
Make all
o
f t
h
e t
e
sts work on all PHP versions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
A
void
do
i
ng
s
t
upidly clever r
e
f
l
ect
i
on tricks that
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
Mode
r
nize
s
ome
of the tes
t
in
g
fa
c
ilities
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-17
Edward Z
.
Yang
Tighter
C
SS sele
c
tor validation
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-06
Edwar
d
Z
.
Yang
R
e
mar
k
about
b
ypassing h
o
s
t
list with punycode
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-06
Edward Z
.
Yang
Optional support
f
or IDNAs wi
t
h
PEA
R
Ne
t
_ID
N
A
2
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2012-01-03
E
dward Z
.
Y
a
n
g
Remov
e
PEARS
a
x
3 lex
e
r
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-30
Edward Z
.
Yan
g
M
a
ke
f
orm
s
work
f
o
r transitio
n
al do
c
ty
p
es
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-27
E
dward Z
.
Yang
Remove inscrutable TODO, optionalize a
n
ot
h
er
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-27
E
dward
Z
.
Yang
A
d
d
note
about su
p
ers
e
ding module
s
in T
O
DO
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
B
ump
m
i
nor version numb
e
r to 4
.
4
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Ya
n
g
A
d
d t
e
st for in
v
alid SafeIframe usage
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Bradley M
.
Froehle
Implement Iframe module, and p
r
ovide %HTML
.
SafeIframe
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Y
a
ng
Add more a
t
t
r
i
bution
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward
Z
.
Y
a
n
g
I
mplement
%
HTML
.
AllowedCo
m
ments and
%HTML
.
Allowed
C
omment
s
Reg
e
xp
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Fix
br
o
ken table content model, easily seen in XHTML1
.
1
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Ed
w
ard
Z
.
Yang
P
roperly
h
andle nested sub
l
ists
by folding into p
r
e
v
i
o
us
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-26
Edwa
r
d
Z
.
Yang
Imple
m
ent
%
H
TML
.
TargetB
l
ank
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yan
g
A
dd
i
sBeni
g
n and
getDefa
u
lt
S
c
h
eme methods
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Y
a
ng
Add a lit
t
l
e
bi
t
o
f
documentation ab
o
ut cont
e
xts for
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edw
a
r
d
Z
.
Ya
n
g
C
or
e
.
E
scapeNonASCI
I
Characte
r
s
n
o
w a
l
ways
work
s
,
e
ven
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
E
d
ward
Z
.
Yang
Add support f
o
r scope at
t
ribute o
n
td an
d
th
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward
Z
.
Yang
Add
one more
t
est for SPL autoloa
d
d
e
f
aults
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-25
Edward
Z
.
Yang
Fix iconv trunca
t
ion
b
ug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-18
Edwar
d
Z
.
Y
a
ng
R
e
move s
p
u
r
ious abs
t
ract d
e
f
i
ni
t
ion; PHP 5
.
4
d
oesn
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-12-18
E
dward
Z
.
Y
a
ng
D
on't unset par
s
er v
a
r
i
able; plays po
o
rly with
s
erialize
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Ed
w
ar
d
Z
.
Ya
n
g
Typof
i
x
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edwar
d
Z
.
Y
a
ng
Don't a
d
d
nofollow for
m
atchi
n
g hosts, g
e
n
eralize th
i
s
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Y
a
ng
U
pdate INSTALL
t
o avoid miss
i
ng config snafu, update
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-08-24
Edward
Z
.
Yang
D
o n
o
t du
p
li
c
ate n
o
follow attr
i
b
ute in transform
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-19
Edward Z
.
Yang
Explicitly init
i
alize anonM
o
dule to null
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-10
Edward Z
.
Yang
URI
.
Munge
munges https to
h
ttp URIs
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-04-10
E
dward Z
.
Yang
Color
k
eywords n
o
w case-insensitive
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Ya
n
g
Release 4
.
3
.
0
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Ed
w
ard Z
.
Yang
F
ix C
S
S URL
i
nnerHTML/cs
s
Text escaping bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
P
r
otect
a
gainst
f
ont family innerHTML/cssText attacks
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
Fix Intern
e
t
Explorer innerHTML bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-24
Edward
Z
.
Yang
Implement CSS
.
A
l
lowedFonts
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-22
Edward Z
.
Yang
Don'
t
autoclose i
f
no parents suppor
t
the
t
ag
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-21
Ed
w
ar
d
Z
.
Yang
Safety update for
n
ested ul test
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-03-17
Edward
Z
.
Yang
Fix E_N
O
TICE from ind
e
xing into
empt
y
s
t
r
i
ng
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-02-27
Edward Z
.
Yang
Fix missing numeric entities (sho
w
s
u
p
w
hen DirectLexing)
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-25
Edward Z
.
Yang
Dramatic
a
lly r
e
writ
e
n
ull host URI h
a
ndling
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-22
Edwa
r
d Z
.
Yang
Fi
x
e
m
bed
d
ing flash on
non-IE
br
o
wsers and allow more
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-19
Ma
x
im Kri
z
hanovsky
Iterative trav
e
rsal of DOM
.
commit
|
commitdiff
|
tree
2011-01-14
Edward
Z
.
Yang
Bump ve
r
sion num
b
er for
Cach
e
.
Serial
i
zerPermis
s
io
n
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2011-01-13
P
e
tr Skoda
A
dd
n
ew
Cache
.
SerializerP
e
rmissions option
.
commit
|
commitdiff
|
tree
2011-01-13
Edward Z
.
Yan
g
Chec
k
that argv is
s
et
befo
r
e oper
a
ting on
i
t
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-12-31
Edwa
r
d Z
.
Yang
Fix
bad inte
r
action between bootst
r
ap autoloader and
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-12-30
E
d
ward
Z
.
Y
a
ng
Fix two bug
s
with caching of
customi
z
ed
r
aw defini
t
ions
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-21
Ed
w
ard Z
.
Yang
Update P
H
PT instruct
i
ons
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edward
Z
.
Yang
A
d
d initial
implementation o
f
CSS
.
Trusted
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edw
a
r
d
Z
.
Yang
Add sanity
c
heck against ze1_c
o
mpatibility
_
mode
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-11-12
Edward Z
.
Ya
n
g
Fix i
n
co
r
rect P
E
A
RSax3
t
e
s
t assertion
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-29
Edward Z
.
Yang
Check if schema
.
s
er was
c
o
r
rupted
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-28
Edw
a
rd Z
.
Yang
Fix
r
emoval of id
with DirectL
e
x by pre
s
erving ar
m
o
r
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-10-28
Nick
Pope
Allow non-static autoload methods w/ PH
P
>=
5
.
2
.
11
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edward Z
.
Yang
Escape CDATA before h
a
ndling conditional comments
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edw
a
rd Z
.
Yang
Im
p
lement HTML
.
Nofollow
f
or external links
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-28
Edward Z
.
Yang
Make IE co
n
dit
i
onal
com
m
ent ma
t
chi
n
g u
n
greedy
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
Ed
w
ard
Z
.
Yang
Releas
e
4
.
2
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
Edwar
d
Z
.
Ya
n
g
R
e
na
m
e newline norma
l
ization directiv
e
to something
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-15
Tomasz Muras
M
ake new
l
ine norm
a
lizat
i
on optional
.
commit
|
commitdiff
|
tree
2010-09-15
E
dward Z
.
Yang
Shif
t
to
4
.
2
.
0 release cycl
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
E
dwar
d
Z
.
Yang
Add
sup
p
ort for fi
l
e://
U
RI
s
ch
e
me
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
E
d
ward Z
.
Y
ang
Update TO
D
O
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Y
a
ng
Implement
HTML
.
FlashAllowFullScreen
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
E
d
ward
Z
.
Yang
A
d
d
%
CSS
.
ForbiddenPro
p
e
r
ties direct
i
v
e
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
Edwa
r
d Z
.
Ya
n
g
A
d
d docu
m
entatio
n
about con
f
igu
r
ation directive
t
ypes
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-09-04
Edwar
d
Z
.
Yang
Rew
o
rd document
a
tion
to be clearer, and gi
v
e
w
arning
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-08-27
Ed
w
ard Z
.
Yang
Fix Mac Snow
Leopard APC bug
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-30
Edward Z
.
Y
ang
Tighten
up ignore spec
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-30
Edward Z
.
Yang
Actually m
a
k
e
URI
.
D
i
sableRe
s
o
u
r
c
es do something
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-21
Edward Z
.
Yang
Ad
d
ed %Core
.
Remov
e
Processi
n
gInstruc
t
ion
s
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-18
Edward Z
.
Yang
Fix improper handling
of
I
E conditional
c
o
mments
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Y
a
ng
Release
4
.
1
.
1
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edward Z
.
Y
a
n
g
Fix undefined i
n
dex warnings in maintena
n
ce scri
p
ts
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
E
dwar
d
Z
.
Yang
Fix b
u
g i
n
parsing
single a
t
tribute with
e
ntities
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-06-01
Edwar
d
Z
.
Yang
Rewrit
e
CSS
u
rl()
a
nd font-famil
y
output logic
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-21
E
dward Z
.
Yang
Make test script
less chatty w
h
en
l
og_errors
is o
n
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-21
Edward Z
.
Yang
Remov
e
she
b
ang an
d
+x from test script
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-18
Edwar
d
Z
.
Yang
Fix
infinite l
o
op
i
nvolving wr
a
pping formedness
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-05
Edward Z
.
Yang
F
ix b
u
g
in b
a
c
kgr
o
un
d
-positi
o
n with center key
w
ord
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-05-04
Ed
w
ar
d
Z
.
Yang
Emit
e
rro
r
s
w
hen
b
ody is extracted
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
Edw
a
r
d Z
.
Yan
g
Relea
s
e 4
.
1
.
0
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
E
dw
a
r
d
Z
.
Y
a
ng
Mute STRICT error
s
from CS
S
Tidy and do
n
't run P
E
ARSax3
.
.
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-26
Edward Z
.
Yang
Always q
u
o
t
e
the c
o
ntents of url(
)
in CS
S
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-04-17
Edward Z
.
Yang
Re
m
ove +x bit
f
rom R
e
moveS
p
ansWit
h
outAttr
i
butes
.
php
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-30
Edward Z
.
Y
ang
Support
for flash
v
ars in HTM
L
.
S
a
feEmbed
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-10
E
dward
Z
.
Yang
Hand
l
e
<
ol><o
l
> properly by adding missin
g
<li> tag
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-09
Edward
Z
.
Yang
Improve h
a
n
dling of malform
e
d object parameters
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
2010-03-08
Ed
w
ar
d
Z
.
Y
a
ng
Rem
o
ve call-tim
e
pass-by-reference
.
Signed-off-by: Edward Z. Yang <
ezyang@mit.edu
>
commit
|
commitdiff
|
tree
next