webino / zend-escaper

Securely and safely escape HTML, HTML attributes, JavaScript, CSS, and URLs

Maintainers

Package info

github.com/webino/ZendEscaper

pkg:composer/webino/zend-escaper

Statistics

Installs: 9 003

Security

Aikido package health analysis

2.6.0 2018-05-25 09:50 UTC

Requires

php: >=7.1

Requires (Dev)

phpunit/phpunit: ^5.7.27 || ^6.5.8 || ^7.1.2
zendframework/zend-coding-standard: ~1.0.0

Suggests

None

Provides

None

Conflicts

None

Replaces

zendframework/zend-escaper: 2.6.0

BSD-3-Clause 97e26e08e60a55030475b56b17f6de31c8014722

ZendFramework zf escaper

This package is auto-updated.

Last update: 2026-06-05 03:36:50 UTC

README

The OWASP Top 10 web security risks study lists Cross-Site Scripting (XSS) in second place. PHP’s sole functionality against XSS is limited to two functions of which one is commonly misapplied. Thus, the zend-escaper component was written. It offers developers a way to escape output and defend from XSS and related vulnerabilities by introducing contextual escaping based on peer-reviewed rules.

File issues at https://github.com/zendframework/zend-escaper/issues
Documentation is at https://docs.zendframework.com/zend-escaper/