graham-campbell/security-core

Security Core Is A Wrapper Of voku/anti-xss For General Use

v3.2.0 2020-08-14 15:20 UTC

This package is auto-updated.

Last update: 2020-09-14 15:36:35 UTC


README

Security Core was created by, and is maintained by Graham Campbell, wrapper of voku/anti-xss for general use. Laravel wrappers for this package exist as Laravel Security and Laravel Binput. Feel free to check out the change log, releases, security policy, license, code of conduct, and contribution guidelines.

Banner

Promo Banner

Build Status StyleCI Status Software License Packagist Downloads Latest Version

Installation

Security Core requires PHP 7.2-8.0.

To get the latest version, simply require the project using Composer:

$ composer require graham-campbell/security-core:^3.1

V1 vs V2/3

V1 was a port of the security class from CodeIgniter 3. CodeIgniter 4 will not be keeping this class, and so V2/3 now functions as a wrapper of voku/anti-xss, which superseeds CodeIgniter's security class.

Usage

To sanitize your string, simply call the clean method on the Security class.

<?php

use GrahamCampbell\SecurityCore\Security;

// $clean = '<span/>X</span>';
$clean = Security::create()->clean('<span/onmouseover=confirm(1)>X</span>');

For usage in Laravel, check out Laravel Security and Laravel Binput.

Security

If you discover a security vulnerability within this package, please send an email to Graham Campbell at graham@alt-three.com. All security vulnerabilities will be promptly addressed. You may view our full security policy here.

License

Security Core is licensed under The MIT License (MIT).

For Enterprise

Available as part of the Tidelift Subscription

The maintainers of graham-campbell/security-core and thousands of other packages are working with Tidelift to deliver commercial support and maintenance for the open source dependencies you use to build your applications. Save time, reduce risk, and improve code health, while paying the maintainers of the exact dependencies you use. Learn more.