Skip to content

php-csas/php-csas

BranchesTags

Repository files navigation

PHP-CSAS

Build Status

  • One Goal: Context-Sensitive Auto-Sanitization for PHP

Overview

  • We are building off of the work done by previous leaders in this field, including inspiration from a paper from Google and UC Berkeley. Languages like Java (Google Soy Templates), C (CTemplate), and Python (Django) and others have modules similar to PHP-CSAS for implementing auto-escaping for various template languages. Our goal is to bring the functionality of these languages into PHP.

Documentation

The documentation is available in the wiki.

File Structure Overview:

  • config.m4 and config.w32: C config file for the CSAS extension.
  • csas.c: C Source file for the extension.
  • php_csas.h: C Header file for the extension.
  • sanitizers/sanitizers.c: Sanitizers used by PHP-CSAS on unsafe input.
  • sanitizers/sanitizers.h: C Header file for sanitizers.c.
  • htmlparser/: Contains the HTML parsing code.

About

Context-Sensitive Auto-Sanitization for PHP

php-csas.github.io/php-csas/

Topics

php php7 xss xss-detection sanitizer php-csas

Resources

Readme

License

View license
Activity
Custom properties

Stars

3 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases 1

Version 1.0 Latest
Apr 25, 2016

Packages

 
 
 

Contributors

Languages