zendframework/zend-escaper
Securely and safely escape HTML, HTML attributes, JavaScript, CSS, and URLs
Maintainers
Requires
- php: ^5.6 || ^7.0
Requires (Dev)
- phpunit/phpunit: ^5.7.27 || ^6.5.8 || ^7.1.2
- zendframework/zend-coding-standard: ~1.0.0
Suggests
None
Provides
None
Conflicts
None
Replaces
None
BSD-3-Clause 3801caa21b0ca6aca57fa1c42b08d35c395ebd5f
This package is auto-updated.
Last update: 2020-01-29 15:12:27 UTC
README
Repository abandoned 2019-12-31
This repository has moved to laminas/laminas-escaper.
👁 Build Status
👁 Coverage Status
The OWASP Top 10 web security risks study lists Cross-Site Scripting (XSS) in second place. PHP’s sole functionality against XSS is limited to two functions of which one is commonly misapplied. Thus, the zend-escaper component was written. It offers developers a way to escape output and defend from XSS and related vulnerabilities by introducing contextual escaping based on peer-reviewed rules.
Installation
Run the following to install this library:
$ composer require zendframework/zend-escaper
Documentation
Browse the documentation online at https://docs.zendframework.com/zend-escaper/