Skip to content

Releases: spassarop/antisamy-dotnet

OWASP AntiSamy v1.2.0

21 Dec 15:49
@spassarop spassarop
v1.2.0
e3a96e5
Compare
Choose a tag to compare
OWASP AntiSamy v1.2.0 Latest
Latest
  • Improved code documentation regarding methods for testing policies.
  • Fix bug regarding noscript when preserving comments in the policy.
  • Updated paragraph regex in example policies.
  • Changed project to exclude the example policies from being added to the NuGet package (#11).
  • Changed target frameworks to include only the ones covered by .NET Standard 2.0.
Assets 2
Loading

OWASP AntiSamy v1.1.1

01 Jun 02:31
@spassarop spassarop
v1.1.1
550e9b7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
OWASP AntiSamy v1.1.1
  • Fix dependency problem regarding AngleSharp.Css reference to AngleSharp.
  • Removed deprecated directives omitXmlDeclaration and useXHTML.
  • Small fixes regarding style processing.

From v1.1.0 which was not released on GitHub:

  • Improve default policy.
  • Added style sheet import capability when parsing CSS, with customizable import amount and connection timeouts.
  • Added .NET 6 support.
  • Improve support for onUnknownTag directive.
  • Add noopenerAndNoreferrerAnchors directive support.
Assets 2
Loading

OWASP AntiSamy v1.0.3

19 Sep 19:11
@spassarop spassarop
v1.0.3
2fdd669
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
OWASP AntiSamy v1.0.3
  • Improve regular expressions for some attributes.
  • Add supports for dynamic attributes like data-* in HTML5.
  • Update project dependencies.
Assets 2
Loading

OWASP AntiSamy v1.0.2

13 Jan 03:18
@spassarop spassarop
v1.0.2
f54b0a1
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
OWASP AntiSamy v1.0.2

This release comes with improvements related to localization and default policies deployment.

  • Updated localization handling and resources: Language selection is now more inclusive as it takes the parent culture, meaning that for example, "en-US" will use "en" instead of failing.
  • Automatic inclusion of default policies: Default policies are now included when installing the NuGet package. They will also be removed when uninstalling.
  • Small refactors and improvements on the main project and tests.
Assets 2
Loading

OWASP AntiSamy v1.0.1

23 Nov 22:10
@spassarop spassarop
v1.0.1
76296a2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
OWASP AntiSamy v1.0.1

First release version of the adaption of OWASP AntiSamy's Java version and huge refactor from the old C# version.

Main features:

  • DOM scanner based on HtmlAgilityPack and AngleSharp.
  • Customizable XML scan policies (with XML schema validation) that can be input as:
    • Raw string.
    • Stream object.
    • FileInfo object.
    • StreamReader object.
  • Filtering with rules/actions to:
    • Remove tags.
    • Filter tags (remove but leave children tags).
    • Truncate tags (remove atributes and children tags).
    • Encode tags (HTML-encode the tag and move the children tags one level up).
    • Validate HTML attributes.
  • JavaScript and CSS cleansing, from tags and attributes content.
Assets 2
Loading