js-xss

leizongmin/js-xss

Fork 0

f6b3e2426f 命令行工具 Zongmin Lei 2014-03-03 19:47:17 +08:00
a7ac6343f6 命令行工具（未完成） Zongmin Lei 2014-03-03 18:35:54 +08:00
d512bd7643 修正：当启用stripIgnoreTagBody时，如果以要过滤的标签开头，会导致前面部分没正确删除[removed]标记 Zongmin Lei 2014-03-03 18:21:39 +08:00
09feade29c v0.1.5 update README only Zongmin Lei 2014-03-03 10:24:40 +08:00
7951fe7484 更新README对Donate的描述 Zongmin Lei 2014-03-03 10:05:57 +08:00
59f8f052c7 修正英文README中对“允许标签以data-开头的属性”的描述 Zongmin Lei 2014-03-03 10:04:15 +08:00
63bd01e053 修正README中对stripIgnoreTag默认值描述有误问题 Zongmin Lei 2014-03-03 10:02:26 +08:00
4cf0924016 Merge pull request #13 from xingrz/translation-english 雷宗民 2014-03-03 09:47:51 +08:00
e98f09153f Added English translation XiNGRZ 2014-03-02 23:22:42 +08:00
d0b7a24c53 Rename README.md to README.zh.md XiNGRZ 2014-03-02 22:48:40 +08:00
21973a8cfd update README Zongmin Lei 2014-02-21 13:09:10 +08:00
641b229cfe update README Zongmin Lei 2014-02-20 10:58:29 +08:00
3f131353a2 v0.1.4 Zongmin Lei 2014-02-20 10:51:18 +08:00
657e80c920 更新说明 Zongmin Lei 2014-02-20 10:50:44 +08:00
d1a4521bfd 修正对style属性的过滤 Zongmin Lei 2014-02-20 10:44:08 +08:00
b358f9b163 增加 td.backgorund 过滤 Zongmin Lei 2014-02-20 10:27:16 +08:00
5e0c8fb489 update package.json Zongmin Lei 2014-02-20 10:22:51 +08:00
c8ee1c268e 自动化测试：不测试v0.6 Zongmin Lei 2014-02-19 15:50:03 +08:00
5ba5e93af9 v0.1.3 Zongmin Lei 2014-02-19 15:45:43 +08:00
af60643087 代码覆盖率测试 Zongmin Lei 2014-02-19 15:45:00 +08:00
131c2b379c update README Zongmin Lei 2014-02-19 15:40:34 +08:00
816bed6643 update README Zongmin Lei 2014-02-19 15:29:19 +08:00
092538823d 去除HTML标签（只保留文本内容） Zongmin Lei 2014-02-19 15:25:42 +08:00
5741fa58b7 Merge pull request #12 from youxiachai/patch-1 雷宗民 2014-02-19 15:16:55 +08:00
176ceabb0d add search keywords youxiachai 2014-02-19 14:52:16 +08:00
ce15bd5a07 v0.1.2 Zongmin Lei 2014-02-18 14:36:23 +08:00
519f0ed944 href和src属性，如果被过滤则返回空值 Zongmin Lei 2014-02-18 14:35:50 +08:00
e2272386a1 默认href和src属性只运行 https, http, / 开头的地址 Zongmin Lei 2014-02-18 14:27:27 +08:00
2c454ee15c v0.1.1 (v0.1.0无法发布到npm上) Zongmin Lei 2014-02-14 10:19:45 +08:00
4250cc7539 update README Zongmin Lei 2014-02-14 10:15:40 +08:00
3eba6dbf53 update README Zongmin Lei 2014-02-14 10:06:09 +08:00
6dabc1b1d6 v0.1.0 Zongmin Lei 2014-02-13 18:22:39 +08:00
c63f87b61f test: stripIgnoreTagBody Zongmin Lei 2014-02-13 18:18:43 +08:00
a6caa0ddcc StripTagBody Zongmin Lei 2014-02-13 17:56:18 +08:00
68c26f28b9 StripTagBodyList Zongmin Lei 2014-02-13 17:55:43 +08:00
66594ba4f0 应用实例：允许名称以x-开头的标签 & 分析HTML代码中的图片列表 Zongmin Lei 2014-02-13 17:00:12 +08:00
0c27ec8163 应用实例：允许标签以data-开头的属性 Zongmin Lei 2014-02-13 16:46:37 +08:00
5c46660e43 测试文件 Zongmin Lei 2014-02-13 16:38:32 +08:00
98dc24ab5a originPosition改名为sourcePosition Zongmin Lei 2014-02-13 16:33:35 +08:00
054aab29a2 test: stripIgnoreTag Zongmin Lei 2014-02-13 16:27:49 +08:00
f64124137e test: safeAttrValue Zongmin Lei 2014-02-13 16:18:10 +08:00
53434487c5 test: escapeHtml Zongmin Lei 2014-02-13 16:13:26 +08:00
f6dcdd7e30 test: onIgnoreTagAttr Zongmin Lei 2014-02-13 15:59:37 +08:00
7fc9d3df3a test: onTagAttr Zongmin Lei 2014-02-13 15:55:36 +08:00
5632ce9bde test: onIgnoreTag Zongmin Lei 2014-02-13 15:31:19 +08:00
09e8a51ecf test: onTag Zongmin Lei 2014-02-13 15:27:58 +08:00
93d4da6cfa 调整测试代码 test_custom_method Zongmin Lei 2014-02-13 15:10:09 +08:00
858b65895d 白名单测试 Zongmin Lei 2014-02-13 15:01:39 +08:00
1a04d6d79e 通过基本的xss白名单测试 Zongmin Lei 2014-02-13 14:58:36 +08:00
c3912a5773 修正html parser Zongmin Lei 2014-02-13 14:58:05 +08:00
8b79e28198 update README Zongmin Lei 2014-02-13 14:00:05 +08:00
2cb1cdb6c5 默认配置未完成 Zongmin Lei 2014-02-13 11:18:03 +08:00
5d5a0cc31e test: html parser 完成 Zongmin Lei 2014-02-13 10:34:44 +08:00
ad057762a3 test: parseAttr Zongmin Lei 2014-02-13 10:26:17 +08:00
1540118ac7 test: parseTag Zongmin Lei 2014-02-12 17:59:55 +08:00
a5f23d9c68 简单 html parser （未完成） Zongmin Lei 2014-02-12 14:33:16 +08:00
f5035815d4 update README Zongmin Lei 2014-02-12 13:31:41 +08:00
4d905758bd v0.1.x README Zongmin Lei 2014-02-12 13:27:30 +08:00
cf7ea7836a Merge branch 'HEAD' of git@github.com:leizongmin/js-xss.git Zongmin Lei 2014-01-30 12:21:37 +08:00
6f0599bfec benchmark Zongmin Lei 2013-12-24 17:25:55 +08:00
33c8bbc9bd 更新README Zongmin Lei 2013-12-24 13:48:20 +08:00
3c568154ac build Zongmin Lei 2013-12-24 13:47:28 +08:00
1cee99f208 更新README Zongmin Lei 2013-12-24 13:46:46 +08:00
a9ff85c4e4 v0.0.9 Zongmin Lei 2013-12-24 13:41:05 +08:00
54699f2da1 过滤 data URI 协议 Zongmin Lei 2013-12-24 13:38:57 +08:00
08763df2c7 完善测试代码 Zongmin Lei 2013-12-24 13:13:28 +08:00
ded9679a21 更新README，添加参考资料 Data URI Zongmin Lei 2013-12-24 13:13:05 +08:00
11fd5b9e48 更新README，添加参考资料 Zongmin Lei 2013-12-24 12:48:56 +08:00
01953d3cf2 添加测试代码 Zongmin Lei 2013-12-24 12:43:12 +08:00
0b237d5672 属性值过滤： HTML5新增实体编码冒号&colon; 换行&NewLine; Zongmin Lei 2013-12-24 12:23:47 +08:00
2d46516427 修正测试代码对&#0000106这种属性值的转义测试 Zongmin Lei 2013-12-24 12:10:18 +08:00
ce329b30d8 修正html实体转义部分 Zongmin Lei 2013-12-24 12:06:52 +08:00
f6e6aaf5dd 将属性值转义部分提取出来：safeAttrValue() Zongmin Lei 2013-12-24 11:36:14 +08:00
eb395b4fdf update README Zongmin Lei 2013-12-11 18:07:50 +08:00
486398da9c v0.0.8 Zongmin Lei 2013-11-05 18:20:11 +08:00
9538e5063c 修正合并错误问题 Zongmin Lei 2013-11-05 18:16:02 +08:00
629f31b697 Merge pull request #7 from xiaojue/master 雷宗民 2013-11-05 02:07:17 -08:00
7c9455c31d 修复ie6，7下不支持trim，forEach,indexOf,string 不支持数组形式调用，改为charAt,format了一下数组格式，避免地版本浏览器兼容错误,修改几处局部重复定义变量语句 xiaojue 2013-11-05 17:47:36 +08:00
a2c98a2767 v0.0.7 Zongmin Lei 2013-11-05 15:41:01 +08:00
89a0be1cde 修正无法正确识别 <br/>标签问题 Zongmin Lei 2013-11-05 15:40:17 +08:00
b4f37de463 去掉无用空格 Zongmin Lei 2013-11-05 15:27:35 +08:00
a877b29c7a 更新注释 Zongmin Lei 2013-09-15 23:03:05 +08:00
4e041a4d8d v0.0.6 Zongmin Lei 2013-09-15 14:04:28 +08:00
51e119efb3 默认白名单中添加 thead Zongmin Lei 2013-08-15 12:57:00 +08:00
0f3bcd50b1 README Zongmin Lei 2013-08-15 12:56:07 +08:00
da43af4bcd 默认白名单tr增加rowspan属性 leizongmin 2013-07-11 22:58:23 +08:00
0d16433a32 默认白名单，img增加width和height属性 leizongmin 2013-07-11 22:55:41 +08:00
30f6f51afd 更新README Zongmin Lei 2013-05-27 10:57:25 +08:00
d14939934d v0.0.5 Zongmin Lei 2013-05-27 10:55:15 +08:00
2c054677c9 默认禁止标签的 style和class 属性 Zongmin Lei 2013-05-27 10:54:02 +08:00
021c664f14 代码风格 Lei Zongmin 2013-05-08 16:23:16 +08:00
a5e2946f8f 代码风格 Lei Zongmin 2013-05-08 16:21:46 +08:00
02cf9113da 性能测试代码 Lei Zongmin 2013-05-08 16:14:49 +08:00
4a2428dc1a 优化性能 Lei Zongmin 2013-05-07 13:46:49 +08:00
92050259d2 重构 Lei Zongmin 2013-05-07 13:30:00 +08:00
70ac8f1b79 代码风格 Lei Zongmin 2013-05-07 12:50:56 +08:00
bd8397a26d 生成浏览器端使用的文件 Lei Zongmin 2013-04-19 16:36:49 +08:00
792a78b615 文件移入 lib 目录 Lei Zongmin 2013-04-19 16:33:37 +08:00
7016117d04 可以在浏览器端使用，函数为 filterXSS Lei Zongmin 2013-04-19 16:31:22 +08:00
73c70c6300 去掉一行测试代码，暂时不知道为什么在Windows上测试不通过 Lei Zongmin 2013-04-19 16:17:25 +08:00

Commit Graph Select branches Hide Pull Requests master Mono Color

Commit Graph

Select branches

Hide Pull Requests

master