mirror/php-htmlpurifier
1
0
Fork 0
mirror of https://github.com/ezyang/htmlpurifier.git synced 2025-10-19 15:56:06 +02:00
Code Issues Releases Wiki Activity
1,726 Commits 7 Branches 67 Tags
b287d2a16aceffbf6e0295559b39662612b77fcf
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
semantic-release-bot b287d2a16a chore(release): 4.19.0 [skip ci] 
# [4.19.0](https://github.com/ezyang/htmlpurifier/compare/v4.18.0...v4.19.0) (2025-10-17)

### Bug Fixes

* add warning for misleading option ([#433](https://github.com/ezyang/htmlpurifier/issues/433)) ([b21a591](b21a59101f))
* catastrophic backtracking in Core.AggressivelyFixLt ([#440](https://github.com/ezyang/htmlpurifier/issues/440)) ([418eeb7](418eeb7dc0))
* Deprecated: preg_replace(): Passing null to parameter [#3](https://github.com/ezyang/htmlpurifier/issues/3) ($subject) o… ([#421](https://github.com/ezyang/htmlpurifier/issues/421)) ([5d154a2](5d154a2393))
* non-substantive typos ([#434](https://github.com/ezyang/htmlpurifier/issues/434)) ([c2bc354](c2bc3549a3))

### Features

* Add CSS direction support ([#429](https://github.com/ezyang/htmlpurifier/issues/429)) ([63e631e](63e631ebd3))
* Add option for safe iframe hosts using array lookup ([#423](https://github.com/ezyang/htmlpurifier/issues/423)) ([b5cbf0c](b5cbf0cc3d))
* Allow more image widths by default ([#430](https://github.com/ezyang/htmlpurifier/issues/430)) ([00a0748](00a0748427))
* Define option URI.AllowedSymbols ([#447](https://github.com/ezyang/htmlpurifier/issues/447)) ([77ebd08](77ebd08632))
* PHP 8.4 support ([#441](https://github.com/ezyang/htmlpurifier/issues/441)) ([ff005f6](ff005f6edc))
* Support PHP 8.5 versions ([#453](https://github.com/ezyang/htmlpurifier/issues/453)) ([1eb05d9](1eb05d9864))
2025-10-17 16:34:55 +00:00
.github/workflows
feat: Support PHP 8.5 versions (#453)
2025-07-21 22:38:54 -04:00
art
[2.0.1] Implement haphazard error collection for AttrValidator.
2007-06-27 02:03:15 +00:00
benchmarks
fix: non-substantive typos (#434)
2025-01-14 16:31:27 -05:00
configdoc
chore(release): 4.19.0 [skip ci]
2025-10-17 16:34:55 +00:00
docs
fix: non-substantive typos (#434)
2025-01-14 16:31:27 -05:00
extras
PHP 8.1: fix various deprecations/errors in newest version of PHP (#310)
2022-04-08 13:48:12 -04:00
library
chore(release): 4.19.0 [skip ci]
2025-10-17 16:34:55 +00:00
maintenance
fix: non-substantive typos (#434)
2025-01-14 16:31:27 -05:00
plugins
fix: non-substantive typos (#434)
2025-01-14 16:31:27 -05:00
smoketests
fix: non-substantive typos (#434)
2025-01-14 16:31:27 -05:00
tests
fix: catastrophic backtracking in Core.AggressivelyFixLt (#440)
2025-06-05 23:49:52 -04:00
.gitattributes
add the docker files to be ignored with installation (#451)
2025-07-21 13:53:59 -04:00
.gitignore
Add docker files for dev environment (#424)
2025-06-05 22:42:52 -04:00
composer.json
feat: Support PHP 8.5 versions (#453)
2025-07-21 22:38:54 -04:00
CREDITS
Add vim modelines to all files.
2008-12-06 04:24:59 -05:00
docker-compose.yaml
Add docker files for dev environment (#424)
2025-06-05 22:42:52 -04:00
Dockerfile
Add docker files for dev environment (#424)
2025-06-05 22:42:52 -04:00
Doxyfile
chore(release): 4.19.0 [skip ci]
2025-10-17 16:34:55 +00:00
INSTALL
fix: non-substantive typos (#434)
2025-01-14 16:31:27 -05:00
INSTALL.fr.utf8
Update PHP version in INSTALL (#195)
2018-10-23 20:03:41 -04:00
LICENSE
Add vim modelines to all files.
2008-12-06 04:24:59 -05:00
NEWS
chore(release): 4.19.0 [skip ci]
2025-10-17 16:34:55 +00:00
package.php
feat: add semantic release (#307)
2022-09-18 02:44:00 -04:00
phpdoc.ini
Add vim modelines to all files.
2008-12-06 04:24:59 -05:00
README.md
PHP 8 Support (#297)
2021-07-20 09:40:50 -04:00
release.config.js
fix: semantic release (#341)
2022-09-20 12:45:11 -04:00
test-settings.sample.php
Run CSSTidy tests on CI (#338)
2022-09-14 20:55:41 -07:00
TODO
fix: non-substantive typos (#434)
2025-01-14 16:31:27 -05:00
update-for-release
feat: add semantic release (#307)
2022-09-18 02:44:00 -04:00
VERSION
chore(release): 4.19.0 [skip ci]
2025-10-17 16:34:55 +00:00
WYSIWYG
Add vim modelines to all files.
2008-12-06 04:24:59 -05:00

README.md

HTML Purifier Build Status

HTML Purifier is an HTML filtering solution that uses a unique combination of robust whitelists and aggressive parsing to ensure that not only are XSS attacks thwarted, but the resulting HTML is standards compliant.

HTML Purifier is oriented towards richly formatted documents from untrusted sources that require CSS and a full tag-set. This library can be configured to accept a more restrictive set of tags, but it won't be as efficient as more bare-bones parsers. It will, however, do the job right, which may be more important.

Places to go:

  • See INSTALL for a quick installation guide
  • See docs/ for developer-oriented documentation, code examples and an in-depth installation guide.
  • See WYSIWYG for information on editors like TinyMCE and FCKeditor

HTML Purifier can be found on the web at: http://htmlpurifier.org/

Installation

Package available on Composer.

If you're using Composer to manage dependencies, you can use

$ composer require ezyang/htmlpurifier
Description
No description provided
Readme LGPL-2.1 13 MiB
Languages
PHP 94.5%
HTML 4.6%
XSLT 0.5%
CSS 0.2%
JavaScript 0.1%