Skip to content

php-csas/php-csas

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

202 Commits

htmlparser

htmlparser

 
 

sanitizers

sanitizers

 
 

tests

tests

 
 

travis

travis

 
 

util

util

 
 

.gitignore

.gitignore

 
 

.travis.yml

.travis.yml

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

build_extension.sh

build_extension.sh

 
 

config.m4

config.m4

 
 

config.w32

config.w32

 
 

csas.c

csas.c

 
 

formatted_csas_print.c

formatted_csas_print.c

 
 

php_csas.h

php_csas.h

 
 

Repository files navigation

PHP-CSAS

Build Status

  • One Goal: Context-Sensitive Auto-Sanitization for PHP

Overview

  • We are building off of the work done by previous leaders in this field, including inspiration from a paper from Google and UC Berkeley. Languages like Java (Google Soy Templates), C (CTemplate), and Python (Django) and others have modules similar to PHP-CSAS for implementing auto-escaping for various template languages. Our goal is to bring the functionality of these languages into PHP.

Documentation

The documentation is available in the wiki.

File Structure Overview:

  • config.m4 and config.w32: C config file for the CSAS extension.
  • csas.c: C Source file for the extension.
  • php_csas.h: C Header file for the extension.
  • sanitizers/sanitizers.c: Sanitizers used by PHP-CSAS on unsafe input.
  • sanitizers/sanitizers.h: C Header file for sanitizers.c.
  • htmlparser/: Contains the HTML parsing code.

About

Context-Sensitive Auto-Sanitization for PHP

php-csas.github.io/php-csas/

Topics

php php7 xss xss-detection sanitizer php-csas

Resources

Readme

License

View license
Activity
Custom properties

Stars

3 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases 1

Version 1.0 Latest
Apr 25, 2016

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages