Announce: xss-sanitize 0.3: css styles allowed
xss-sanitize is a library that allows you to accept html from untrusted sources by first filtering it through a white list. For example, this allows a web application to safely use a rich text editor or allow html in comments. version 0.3 allows elements to have a style attribute. The css will be parsed and ran through a special css white list. This new version adds a dependency on attoparsec-text This library is used automatically and transparently in Yesod where appropriate, and the new version will be used in the upcoming 0.9 release.
awesome!
On Tue, Aug 9, 2011 at 11:54 AM, Greg Weber
xss-sanitize is a library that allows you to accept html from untrusted sources by first filtering it through a white list. For example, this allows a web application to safely use a rich text editor or allow html in comments. version 0.3 allows elements to have a style attribute. The css will be parsed and ran through a special css white list. This new version adds a dependency on attoparsec-text This library is used automatically and transparently in Yesod where appropriate, and the new version will be used in the upcoming 0.9 release. _______________________________________________ web-devel mailing list web-devel@haskell.org http://www.haskell.org/mailman/listinfo/web-devel
participants (2)
-
Greg Weber -
Jeremy Shaw