Details

    • Type: Task
    • Status: Open (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: v2.1.0
    • Component/s: Dependencies
    • Labels:
      None
    • Attachments:
      0
    • Comments:
      0

      Description

      According to the OWASP pages, AntiSamy is not actively supported.

      In addition to removing it from the page rendering, we need to add sanitisation to the ingest mechanism.

      Suggest using this instead

      https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project

        Attachments

          Activity

            People

            • Assignee:
              grahamtriggs Graham Triggs
              Reporter:
              grahamtriggs Graham Triggs
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: