Stauros
一个快速的XSS消除PHP库.
With the default settings, simply callStauros->scanHTML():
$stauros = new Stauros;$clean = $stauros->scanHTML($dirty);
Easy as that
Stauros supports streaming content as well. You can use a stream as input, getting a string as output:
$clean = $stauros->scanHTMLStreamToString($stream);
Or you can use it as a stream to stream process:
$stauros->scanHTMLStreamToStream($input, $output);
The configuration class (Stauros\HTML\Config) allows you to specify html tag whitelists, as well as attribute whitelist and implement an attribute callback for further customization.
项目主页:http://www.open-open.com/lib/view/home/1441378271175
![[웹 프런트엔드] Node.js 빠른 시작](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
