You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
|
|
|
|
|
# zend-escaper
|
|
|
|
|
|
|
|
|
|
|
|
[](https://secure.travis-ci.org/zendframework/zend-escaper)
|
|
|
|
|
|
[](https://coveralls.io/github/zendframework/zend-escaper?branch=master)
|
|
|
|
|
|
|
|
|
|
|
|
The OWASP Top 10 web security risks study lists Cross-Site Scripting (XSS) in
|
|
|
|
|
|
second place. PHP’s sole functionality against XSS is limited to two functions
|
|
|
|
|
|
of which one is commonly misapplied. Thus, the zend-escaper component was written.
|
|
|
|
|
|
It offers developers a way to escape output and defend from XSS and related
|
|
|
|
|
|
vulnerabilities by introducing contextual escaping based on peer-reviewed rules.
|
|
|
|
|
|
|
|
|
|
|
|
## Installation
|
|
|
|
|
|
|
|
|
|
|
|
Run the following to install this library:
|
|
|
|
|
|
|
|
|
|
|
|
```bash
|
|
|
|
|
|
$ composer require zendframework/zend-escaper
|
|
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
|
|
## Documentation
|
|
|
|
|
|
|
|
|
|
|
|
Browse the documentation online at https://docs.zendframework.com/zend-escaper/
|
|
|
|
|
|
|
|
|
|
|
|
## Support
|
|
|
|
|
|
|
|
|
|
|
|
* [Issues](https://github.com/zendframework/zend-escaper/issues/)
|
|
|
|
|
|
* [Chat](https://zendframework-slack.herokuapp.com/)
|
|
|
|
|
|
* [Forum](https://discourse.zendframework.com/)
|
