| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2009-08-29 | Refactor all calls of p::clean() to SafeString::of() and p::purify() to ↵ | Andy Staudacher | |
| SafeString::purify(). Removing any p::clean() calls for arguments to t() and t2() since their args are wrapped in a SafeString anyway. | |||
| 2009-08-29 | Adding SafeString which is going to replace p::clean() and p::purify(). | Andy Staudacher | |
| Refactoring of Xss_Security_Test. t() and t2() return a SafeString instance. TODO: - Update all code to use SafeString where appropriate. - Update golden fole of Xss_Security_Test - Stop reporting CLEAN vars in Xss_Security_Test | |||
| 2009-07-03 | Split the clean method into two clean and purify. clean is a light weight | Tim Almdal | |
| approach using html::specialchars and purify uses HTMLPurifier to intelligently cleanse the output fields. Use purifier for text and title fields where it is likely that a user would enter html to format their data. | |||
| 2009-07-03 | Update the source so the third party code passes the File Structure Test | Tim Almdal | |
| 2009-07-03 | Fix for ticket #400: Add HTMLPurifier to gallery3 and change p::clean() to ↵ | Tim Almdal | |
| call HTMLPurifier->purify() | |||
| 2009-07-03 | Fix for ticket #400: Add HTMLPurifier to gallery3 and change p::clean() to ↵ | Tim Almdal | |
| call HTMLPurifier->purify() | |||
| 2009-06-02 | make cleanm static | Tim Almdal | |
| 2009-05-31 | Switch to using html::specialchars() for cleaning. | Bharat Mediratta | |
| 2009-05-31 | First pass at an XSS security test, along with the "p" helper which | Bharat Mediratta | |
| can clean HTML output. | |||
 |
index : gallery3.git | |
| A clone of the Gallery3 code for testing and development. | root |
| summaryrefslogtreecommitdiff |