Skip to content

OWASP AntiSamy v1.0.1
Compare
Choose a tag to compare
@spassarop spassarop released this 23 Nov 22:10
v1.0.1
76296a2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

First release version of the adaption of OWASP AntiSamy's Java version and huge refactor from the old C# version.

Main features:

  • DOM scanner based on HtmlAgilityPack and AngleSharp.
  • Customizable XML scan policies (with XML schema validation) that can be input as:
    • Raw string.
    • Stream object.
    • FileInfo object.
    • StreamReader object.
  • Filtering with rules/actions to:
    • Remove tags.
    • Filter tags (remove but leave children tags).
    • Truncate tags (remove atributes and children tags).
    • Encode tags (HTML-encode the tag and move the children tags one level up).
    • Validate HTML attributes.
  • JavaScript and CSS cleansing, from tags and attributes content.
Assets 2
Loading