htmlpurifier/README.md

HTML Purifier [![Build Status](https://github.com/ezyang/htmlpurifier/actions/workflows/ci.yml/badge.svg?branch=master)](https://github.com/ezyang/htmlpurifier/actions/workflows/ci.yml)
=============

HTML Purifier is an HTML filtering solution that uses a unique combination
of robust whitelists and aggressive parsing to ensure that not only are
XSS attacks thwarted, but the resulting HTML is standards compliant.

HTML Purifier is oriented towards richly formatted documents from
untrusted sources that require CSS and a full tag-set.  This library can
be configured to accept a more restrictive set of tags, but it won't be
as efficient as more bare-bones parsers. It will, however, do the job
right, which may be more important.

Places to go:

* See INSTALL for a quick installation guide
* See docs/ for developer-oriented documentation, code examples and
  an in-depth installation guide.
* See WYSIWYG for information on editors like TinyMCE and FCKeditor

HTML Purifier can be found on the web at: [http://htmlpurifier.org/](http://htmlpurifier.org/)

## Installation

Package available on [Composer](https://packagist.org/packages/ezyang/htmlpurifier).

If you're using Composer to manage dependencies, you can use

    $ composer require ezyang/htmlpurifier
PHP 8 Support (#297) Co-authored-by: Maksims Sļotovs <maksims.slotovs@printful.com> 2021-07-20 13:40:50 +00:00			`HTML Purifier [![Build Status](https://github.com/ezyang/htmlpurifier/actions/workflows/ci.yml/badge.svg?branch=master)](https://github.com/ezyang/htmlpurifier/actions/workflows/ci.yml)`
Added more info in README 2015-03-28 19:57:54 +00:00			`=============`
[1.1.2] Mass svn:eol-style=native. data.txt had line ending info taken away, since it is unbiased git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@464 48356398-32a2-884e-a903-53898d9a118a 2006-09-25 00:05:33 +00:00
Remove trailing whitespace. Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com> 2008-12-06 07:28:20 +00:00			`HTML Purifier is an HTML filtering solution that uses a unique combination`
Fix spelling 2017-10-31 21:52:54 +00:00			`of robust whitelists and aggressive parsing to ensure that not only are`
Remove trailing whitespace. Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com> 2008-12-06 07:28:20 +00:00			`XSS attacks thwarted, but the resulting HTML is standards compliant.`
[1.1.2] Mass svn:eol-style=native. data.txt had line ending info taken away, since it is unbiased git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@464 48356398-32a2-884e-a903-53898d9a118a 2006-09-25 00:05:33 +00:00
Remove trailing whitespace. Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com> 2008-12-06 07:28:20 +00:00			`HTML Purifier is oriented towards richly formatted documents from`
			`untrusted sources that require CSS and a full tag-set. This library can`
			`be configured to accept a more restrictive set of tags, but it won't be`
			`as efficient as more bare-bones parsers. It will, however, do the job`
			`right, which may be more important.`
[1.1.2] Mass svn:eol-style=native. data.txt had line ending info taken away, since it is unbiased git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@464 48356398-32a2-884e-a903-53898d9a118a 2006-09-25 00:05:33 +00:00
[1.3.3] - Move SLOW to docs/enduser-slow.html and add code examples - Update README and WYSIWYG - Add warning to HTMLPurifier.func.php about naming similarities git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@635 48356398-32a2-884e-a903-53898d9a118a 2007-01-11 22:28:44 +00:00			`Places to go:`

			`* See INSTALL for a quick installation guide`
			`* See docs/ for developer-oriented documentation, code examples and`
			`an in-depth installation guide.`
			`* See WYSIWYG for information on editors like TinyMCE and FCKeditor`

Added more info in README 2015-03-28 19:57:54 +00:00			`HTML Purifier can be found on the web at: [http://htmlpurifier.org/](http://htmlpurifier.org/)`

			`## Installation`

			`Package available on [Composer](https://packagist.org/packages/ezyang/htmlpurifier).`

			`If you're using Composer to manage dependencies, you can use`
Add vim modelines to all files. Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com> 2008-12-06 09:24:59 +00:00
Suggest stable Composer installation (#179) Normally people should not use the latest master but the latest stable release instead. 2018-06-10 02:44:20 +00:00			`$ composer require ezyang/htmlpurifier`