zendframework/zend-escaper

This package is abandoned and no longer maintained. The author suggests using the laminas/laminas-escaper package instead.

Securely and safely escape HTML, HTML attributes, JavaScript, CSS, and URLs

Maintainers

Package info

github.com/zendframework/zend-escaper

Chat

Forum

Documentation

pkg:composer/zendframework/zend-escaper

Statistics

Installs: 49 075 177

Dependents: 115

Suggesters: 5

Stars: 321

Open Issues: 6

Security

Advisories: 0

Aikido package health analysis

2.6.1 2019-09-05 20:03 UTC

Requires

  • php: ^5.6 || ^7.0

Requires (Dev)

BSD-3-Clause 3801caa21b0ca6aca57fa1c42b08d35c395ebd5f

ZendFrameworkzfescaper

This package is auto-updated.

Last update: 2020-01-29 15:12:27 UTC

README

Repository abandoned 2019-12-31

This repository has moved to laminas/laminas-escaper.

Build Status Coverage Status

The OWASP Top 10 web security risks study lists Cross-Site Scripting (XSS) in second place. PHP’s sole functionality against XSS is limited to two functions of which one is commonly misapplied. Thus, the zend-escaper component was written. It offers developers a way to escape output and defend from XSS and related vulnerabilities by introducing contextual escaping based on peer-reviewed rules.

Installation

Run the following to install this library:

$ composer require zendframework/zend-escaper

Documentation

Browse the documentation online at https://docs.zendframework.com/zend-escaper/

Support