Skip to content
/ antisamy Public
forked from nahsra/antisamy

a library for performing fast, configurable cleansing of HTML coming from untrusted sources

0 stars 92 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hjkyoyo/antisamy

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

antisamy

A library for performing fast, configurable cleansing of HTML coming from untrusted sources.

Another way of saying that could be: It's an API that helps you make sure that clients don't supply malicious cargo code in the HTML they supply for their profile, comments, etc., that get persisted on the server. The term "malicious code" in regards to web applications usually mean "JavaScript." Mostly, Cascading Stylesheets are only considered malicious when they invoke the JavaScript. However, there are many situations where "normal" HTML and CSS can be used in a malicious manner.

How to Use

First, add the dependency from Maven:

<dependency>
   <groupId>org.owasp.antisamy</groupId>
   <projectId>antisamy</projectId>
</dependency>

How to Build

You can build and test from source pretty easily:

$ git clone https://github.com/nahsra/antisamy
$ cd antisamy
$ mvn package

About

a library for performing fast, configurable cleansing of HTML coming from untrusted sources

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • DIGITAL Command Language 34.8%
  • HTML 30.9%
  • Java 15.2%
  • JavaScript 7.5%
  • CSS 6.4%
  • Shell 4.6%
  • Other 0.6%