A fast XSS cleaner for PHP
Installs: 12 382
Open Issues: 2
- php-64bit: >=5.5
- ezyang/htmlpurifier: dev-master
- friendsofphp/php-cs-fixer: 1.*
- phpunit/phpunit: ^4.8|^5.0
This package is auto-updated.
Last update: 2023-05-19 21:36:59 UTC
A fast XSS sanitation library for PHP.
THIS IS AN EXPERIMENTAL LIBRARY, USE AT YOUR OWN RISK
How to use it
With the default settings, simply call
$stauros = new Stauros; $clean = $stauros->scanHTML($dirty);
Easy as that
Working with streams
Stauros supports streaming content as well. You can use a stream as input, getting a string as output:
$clean = $stauros->scanHTMLStreamToString($stream);
Or you can use it as a stream to stream process:
The configuration class (
Stauros\HTML\Config) allows you to specify html tag whitelists, as well as attribute whitelist and implement an attribute callback for further customization.