search

OWASP / java-html-sanitizer

Takes third-party HTML and produces HTML that is safe to embed in your web application. Fast and easy to configure.
Other
843 stars 213 forks source link

Expose StandardUrlAttributePolicy #211

Closed sdlin closed 3 years ago

sdlin commented 3 years ago

This makes public the StandardUrlAttributePolicy class and its singleton, so other libraries can use it.

This is useful for the matcher in step 4 of the "Inline/Embedded Images" pattern (https://owasp.org/www-project-java-html-sanitizer/migrated_content) to allow the data protocol for inline images.

sdlin commented 3 years ago

Pinging @mikesamuel and @manicode, per contribution instructions.

jmanico commented 3 years ago

I'm politely waiting on @mvsamuel for this...

On 10/28/20 2:19 PM, sdlin wrote:

Pinging @mvsamuel and @manicode https://github.com/manicode, per contribution instructions https://github.com/OWASP/java-html-sanitizer#contributing.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/OWASP/java-html-sanitizer/pull/211#issuecomment-718281518, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAEBYCN65Q2BTO3CU6V755LSNCYKDANCNFSM4TDA5LCA.

-- Jim Manico Manicode Security https://www.manicode.com

sdlin commented 3 years ago

Closing b/c it's no longer needed. Thanks though!

mikesamuel commented 3 years ago

@sdlin, Sorry about not responding earlier. My GH notifications are a mess. Anything I can do to help?

sdlin commented 3 years ago

No worries, nothing is needed, but thank you for asking and for your contributions to this library!