Drupal investigation

Gogs 1ec4058aa2 Initial configuration 7 years ago
..
doc 1ec4058aa2 Initial configuration 7 years ago
src 1ec4058aa2 Initial configuration 7 years ago
CHANGELOG.md 1ec4058aa2 Initial configuration 7 years ago
CONDUCT.md 1ec4058aa2 Initial configuration 7 years ago
CONTRIBUTING.md 1ec4058aa2 Initial configuration 7 years ago
LICENSE.md 1ec4058aa2 Initial configuration 7 years ago
README.md 1ec4058aa2 Initial configuration 7 years ago
composer.json 1ec4058aa2 Initial configuration 7 years ago
mkdocs.yml 1ec4058aa2 Initial configuration 7 years ago

README.md

zend-escaper

Build Status Coverage Status

The OWASP Top 10 web security risks study lists Cross-Site Scripting (XSS) in second place. PHP’s sole functionality against XSS is limited to two functions of which one is commonly misapplied. Thus, the zend-escaper component was written. It offers developers a way to escape output and defend from XSS and related vulnerabilities by introducing contextual escaping based on peer-reviewed rules.