Aidan Woods
6bb66db00f
anti-xss
...
protect all attributes and content from xss via element method
filter special attributes (a href, img src)
expand url whitelist slightly to permit data images and mailto links
2017-05-01 03:25:07 +01:00
naNuke
b3d45c4bb9
Add html escaping to all attributes capable of holding user input.
2017-05-01 02:00:38 +01:00
naNuke
1d4296f34d
Customizable whitelist of schemas for safeLinks
2017-05-01 01:58:34 +01:00
naNuke
bf5105cb1a
Improve safeLinks with whitelist.
2017-05-01 01:58:34 +01:00
naNuke
1140613fc7
Prevent various XSS attacks
2017-05-01 01:58:34 +01:00
Emanuil Rusev
1bf24f7334
add kbd to text-level elements
2017-03-29 19:04:15 +03:00
Marek Skiba
7081afe8cb
Removed double semicolon
2017-03-02 12:43:51 +01:00
Aidan Woods
0172d779d7
Trim surrounding whitespace from URL in inlineLink
...
Fixes https://github.com/erusev/parsedown-extra/issues/103
2017-01-21 11:06:41 +00:00
gene_sis
48351504de
adjust two regex pattern within inlineLink() to reduce backtracking
...
add test with base64 image
2017-01-07 00:45:38 +01:00
Aidan Woods
5c22531e4d
Allow parsedown to specify list start attribute
...
Syntax preferences
2016-10-05 18:27:54 +01:00
Aidan Woods
3978e33fd0
Allow parsedown to specify list start attribute
...
Remove github added tabs on blank lines
2016-10-05 18:17:12 +01:00
Aidan Woods
a37797ef34
Allow parsedown to specify list start attribute
...
Syntax preferences to match surrounding code
2016-10-05 18:15:47 +01:00
Aidan Woods
e3cd271f16
Allow parsedown to specify list start attribute
...
Performance: Swap preg_replace for stristr to obtain list start
2016-10-05 15:44:34 +01:00
Aidan Woods
f0b7b61c16
Allow parsedown to specify list start attribute
...
Should fix compatibility for PHP 5.3
2016-10-05 11:36:27 +01:00
Aidan Woods
ed41fcf3d6
Allow parsedown to specify list start attribute
...
oops
2016-10-05 10:06:40 +01:00
Aidan Woods
1fa8fae301
Allow parsedown to specify list start attribute
...
Readability improvements
2016-10-05 10:03:21 +01:00
Aidan Woods
f17aa0438a
Update Parsedown.php
2016-09-27 02:15:35 +01:00
Aidan Woods
38f4027d5e
Update Parsedown.php
...
Okay, so maybe I should have looked 20 lines or so above where I made the edit in the element function – looks like it already supports adding attributes ;p
Have amended the change to blocklist to use the already existing functionality, and have reverted the change that I made to the element function.
2016-09-27 02:15:09 +01:00
Aidan Woods
2cee8d8a2d
Update Parsedown.php
...
Looks like I might need to return the pattern which was used previously
Reverting last change as build still failed
This build will still fail, but I'm hoping it will only fair where the list start value has been inserted
2016-09-27 01:23:22 +01:00
Aidan Woods
cceefafd55
test
...
Attempting to determine which function change is causing test jobs to fail (in unexpected ways)
2016-09-27 01:16:00 +01:00
Aidan Woods
1c58e9d8d5
oops
...
oops
2016-09-27 00:57:57 +01:00
Aidan Woods
2772b034c6
Update Parsedown.php
...
(I think this should work)
Allow parsedown to specify list start attribute (see: https://github.com/erusev/parsedown/issues/100#issuecomment-249729602 )
2016-09-27 00:53:51 +01:00
Emanuil Rusev
490a8f35a4
remove incompatible comment
2016-03-09 19:02:39 +02:00
Andy Miller
e7443a2bd8
Fixed really sorry spelling errors
2015-12-18 20:45:14 -07:00
Andy Miller
10a7ff776c
Left as-is
2015-12-17 10:48:21 -07:00
Andy Miller
5ad15b87fa
Break out method_exists checks into extendable methods to allow for better pluggability
2015-12-17 10:46:44 -07:00
Andy Miller
b166cab9a2
Make lines
protected to allow for extendability
2015-12-17 10:46:04 -07:00
Jesse Donat
e603c2378d
Parsedown library shouldn't be executable
2015-10-20 15:16:36 -05:00
Emanuil Rusev
3ebbd730b5
1.6.0
2015-10-04 19:44:32 +03:00
Emanuil Rusev
fa005fdb95
Merge pull request #336 from hkdobrev/late-static-binding
...
Use late static binding for Parsedown::instance()
2015-08-13 15:16:23 +03:00
Haralan Dobrev
5f40cab3e7
Use late static binding for Parsedown::instance()
...
Fixes erusev/parsedown-extra#67 .
This introduces PHP 5.3+ late static binding to the Singleton pattern in Parsedown.
It will return an instance of Parsedown which inherits the class which
called the `instance()` method rather than always returning instance of just `Parsedown`.
Tests are testing this feature with a test class which inherits from Parsedown.
Notice that calling `instance()` with the default arguments after an instance of
`Parsedown` was already created, it will return it even though it is from just
an instance of `Parsedown`. So this is fixing the problem just partially.
2015-08-13 13:29:33 +03:00
Emanuil Rusev
0e89e3714b
1.5.4
2015-08-03 12:24:05 +03:00
Emanuil Rusev
6b24125f06
clean up
2015-07-31 17:01:14 +03:00
Emanuil Rusev
a589bcac79
resolve #342
2015-07-31 01:33:21 +03:00
Emanuil Rusev
a9dfc97ddc
opening code fence doesn't need 2 regex groups
2015-07-16 16:57:13 +03:00
Emanuil Rusev
ba802c1c8d
replace the term "incomplete"
2015-07-02 01:01:14 +03:00
Emanuil Rusev
438874e9a8
improve line
2015-06-25 01:05:05 +03:00
Emanuil Rusev
e2bb3eaaf8
clean up
2015-06-15 12:28:35 +03:00
Emanuil Rusev
b9e5228e92
version 1.5.3
2015-04-29 23:22:24 +03:00
Gareth Evans
6736ba9a04
Fix check against $matches
...
Fixes inline reference links with int 0 as reference
The link [link][0] where [0] is set at the bottom of the md file current breaks and it's truthy value is false.
2015-04-20 16:24:11 +01:00
Jeff Standen
b828fe7c8d
Fixes #283
2015-02-03 13:58:47 -08:00
Niklas Keller
cb8cc57742
Fixes #279
2015-02-02 00:58:24 +01:00
Emanuil Rusev
9da19c1108
version 1.5.1
2015-01-24 15:01:47 +02:00
Emanuil Rusev
e94ecf4adc
resolve #277
2015-01-24 14:21:55 +02:00
Emanuil Rusev
4d3079b908
resolve #274
2015-01-24 14:03:05 +02:00
Emanuil Rusev
648419467a
clean up
2015-01-21 01:32:20 +02:00
Emanuil Rusev
6ddb6b2b33
resolve #90
2015-01-19 17:11:13 +02:00
Emanuil Rusev
0008e69a83
clean up
2015-01-19 17:09:51 +02:00
Emanuil Rusev
c664785485
inline methods should be able to handle unmarked inline elements
2015-01-19 17:05:10 +02:00
Emanuil Rusev
bdf0ef024e
setter variables should not be private
2015-01-18 19:38:57 +02:00