Xss Filters Versions Save

Secure XSS Filters.

v1.2.7

7 years ago

updated devDependencies
fixed uglify settings to preserve \x0B for IE8
updated email addresses of authors
updated travis nodejs versions
updated npm deploy api key

v1.2.6

8 years ago

enhanced css filters for IE
blacklisted x-schema protocol

v1.2.4

8 years ago

v1.2.3

8 years ago

v1.2.0

8 years ago

Support a new set of css private filters for secure-handlebars

v1.1.2

9 years ago

v1.1.0

9 years ago

Version bump
Details refer to https://github.com/yahoo/xss-filters/releases/tag/v1.0.7

v1.0.7

9 years ago

null handling in yc() and yavu()
yavu() optimized and caught all null cases
exposed yup() to retrieve protocol (some false positives for &#0, but acceptable)
yubl() updated to prefix x- before javascript:, vbscript:, data:, and mhtml:

v1.0.6

9 years ago

treated grave accent ` handling in y() and yavu()
escaped tab and newline in numeric values ( instead of and instead of ) for compatibility with older browsers
improved speed of yubl() based on http://jsperf.com/lazy-regexp-parsing
code cleanup to shrink space

v1.0.5

9 years ago

fixed: check : too, otherwise could bypass yubl()