mirror of
https://github.com/ezyang/htmlpurifier.git
synced 2025-08-12 17:13:57 +02:00
16
WHATSNEW
16
WHATSNEW
@@ -1,8 +1,8 @@
|
||||
HTML Purifier 4.2.0 is a minor release that implements a number of
|
||||
feature requests accumulated over half a year. New configuration
|
||||
options include %Core.RemoveProcessingInstructions,
|
||||
%CSS.ForbiddenProperties, %HTML.FlashAllowFullScreen and
|
||||
%Core.NormalizeNewlines. Additionally,%URI.DisableResources is
|
||||
now functional and file: is an optionally supported URI scheme.
|
||||
There are also some minor bugfixes, usability improvements and
|
||||
documentation updates.
|
||||
HTML Purifier 4.3.0 is a major security release addressing various
|
||||
security vulnerabilities related to user-submitted code and legitimate
|
||||
client-side scripts. It also contains an accumulation of new features
|
||||
and bugfixes over half a year. New configuration options include
|
||||
%CSS.Trusted, %CSS.AllowedFonts and %Cache.SerializerPermissions.
|
||||
There is a backwards-incompatible API change for customized raw
|
||||
definitions, see <http://htmlpurifier.org/docs/enduser-customize.html#optimized>
|
||||
for details.
|
||||
|
Reference in New Issue
Block a user