nahsra/antisamy

Issues

• CDATA scanning in XML not behaving properly

  #531 opened 5 months ago by akshay-kr
  4

• Embed style sheets after opening `embedStyleSheets` should not be deleted all.

  #108 opened 3 years ago by LiuXing-R
  11

• Selfclosing Break Line Tag <br /> tag in html content is converted into <br> open tag.

  #484 opened 8 months ago by BloodDrag0n
  21

• Identified a checkmarx vulnerability

  #536 opened 4 months ago by Purnaank
  4

• noopenerAndNoreferrerAnchors policy directive seems disabled by default in 1.7.2 version

  #350 opened 2 years ago by anja-goldschmidt
  5

• When my runtime environment is a Chinese encoding environment, the list of error messages returned is garbled

  #456 opened 10 months ago by GodMeowIceSun
  4

• Typo in CssValidator

  #518 opened 6 months ago by jonah1und1
  0

• Antisamy 1.7.5 version - <body> tag issue

  #453 opened 9 months ago by jeetu22
  34

• Regex named: "Paragraph", is causing "StackOverFlowError"

  #402 opened 10 months ago by BloodDrag0n
  8

• Prevent formatting and translation of css

  #438 opened a year ago by tom-mayer
  3

• Sanitized output for same tainted input differs from AntiSamy 1.7.3 to 1.7.4

  #389 opened a year ago by kwwall
  6

• antiSamy.scan(input, policy) giving the following as not a valid html.

  #416 opened a year ago by mahi277149
  8

• the argument 'policy' never be used

  #413 opened a year ago by reddylin
  1

• Enabled noopenerAndNoreferrerAnchors policy drops nofollow

  #287 opened 2 years ago by nikowitt
  7

• antisamy:1.7.3 contains batik-css:1.16 that has CVE-2022-44729 vulnerability

  #363 opened 2 years ago by nayeligarciac
  1

• Is there a way to not encode certain HTML Entities?

  #362 opened 2 years ago by enterlne
  6

• How to find if vulnerable script is present in the input

  #356 opened 2 years ago by mathewm3
  8

• GraalVM Support

  #340 opened 2 years ago by adamhenderson
  4

• AntiSamy encodes unknown tags despite not being configured that way

  #333 opened 2 years ago by gister9000
  6

• Dealing with Security Vulnerabilities CVE-2023-26119

  #321 opened 2 years ago by ChenyuWang98
  13

• Investigate replacing Batik CSS

  #293 opened 2 years ago by spassarop
  1

• full CSS is escaped if a style definition seems invalid

  #117 opened 3 years ago by optyler
  4

• how to edit the antisamy.xml to support the css-style "-webkit-border-radius" or "-moz-border-radius"

  #125 opened 3 years ago by wangyun2018
  6

• Antisamy removes "margin" attribute when it's value is configured very small decimal number

  #101 opened 4 years ago by bijarniy
  23

• Does Antisamy has support for custom css properties " --* " and css-function " var() " and how to define it in the antisamy policy file?

  #286 opened 2 years ago by BloodDrag0n
  10

• Covering all cases of "rel" attribute in "anchor" tag is quite verbose

  #288 opened 2 years ago by nikowitt
  3

• Removing Xerces dependency?

  #266 opened 2 years ago by wilx
  3

• CssHandler test case failure on Windows

  #223 opened 3 years ago by davewichers
  5

• CVE-2022-24891

  #252 opened 2 years ago by onemoreflag
  7

• 1 enhancement with api

  #245 opened 2 years ago by k4n5ha0
  2

• 2 enhancement

  #243 opened 2 years ago by k4n5ha0
  2

• Incorrect 'Contributing' link on OWASP wiki page

  #224 opened 3 years ago by kwwall
  1

• AntiSamy converting single quotes to double quotes for font-family which is causing issue while rendering

  #200 opened 3 years ago by Gouravmoy
  6

• Enhancement: Add Spotless to auto format files

  #112 opened 3 years ago by davewichers
  3

• Javadoc cleanup

  #225 opened 3 years ago by kwwall
  0

• AntiSamy not detecting XSS for anchor tag

  #214 opened 3 years ago by trcoelho
  10

• Remove all deprecated APIs/features in prep for 1.7.0 release

  #195 opened 3 years ago by davewichers
  1

• ASHTMLSerializer uses deprecated HTMLSerializer. Replace with TrAX.

  #196 opened 3 years ago by davewichers
  0

• Improve Unit Test Coverage

  #123 opened 3 years ago by davewichers
  0

• Commit details for CVE-2022-28366?

  #174 opened 3 years ago by codehelp
  4

• AntiSamy 1.6.4 doesn't play nicely with xalan-j 2.7.2

  #103 opened 3 years ago by timcoleman
  56

• require-closing-tags is not supported by antsamy.xsd

  #147 opened 3 years ago by SushantC12
  5

• Change in behavior between 1.6.4 and 1.6.5 for getErrorMessages

  #151 opened 3 years ago by mjclemente
  7

• Imported styles are in the wrong order regarding non-imported styles

  #113 opened 3 years ago by spassarop
  7

• Test Case JavaDoc Issues w/ Java 11+

  #120 opened 3 years ago by davewichers
  1

• Test build failed in Java 7

  #95 opened 3 years ago by LiuXing-R
  3

• Is antisamy-1.4.4 impacted by Apache Log4j Tool : Zero Day in Ubiquitous Under Active Attack (CVE-2021-44228) ?

  #118 opened 3 years ago by vsomawar
  7

• newline problem

  #110 opened 3 years ago by myto2006
  4

• The 'data - *' dynamic attribute of AntiSamy.DOM is not supported.

  #105 opened 4 years ago by LiuXing-R
  0

• The lang subtags is cleaned

  #99 opened 4 years ago by LiuXing-R
  5