Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/adrianbj/filevalidatorsvgsanitizer

ProcessWire module that extends FileValidatorModule for validating and sanitizing SVG files
https://github.com/adrianbj/filevalidatorsvgsanitizer

processwire sanitization svg svg-files validator

Last synced: 3 months ago
JSON representation

ProcessWire module that extends FileValidatorModule for validating and sanitizing SVG files

Host: GitHub
URL: https://github.com/adrianbj/filevalidatorsvgsanitizer
Owner: adrianbj
License: gpl-2.0
Created: 2015-04-03T14:26:22.000Z (almost 10 years ago)
Default Branch: master
Last Pushed: 2020-09-26T16:59:49.000Z (over 4 years ago)
Last Synced: 2024-05-02T00:34:41.994Z (9 months ago)
Topics: processwire, sanitization, svg, svg-files, validator
Language: PHP
Size: 15.6 KB
Stars: 6
Watchers: 2
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# File Validator SVG Sanitizer

## This module is no longer maintained. It has been replaced by: https://github.com/ryancramerdesign/FileValidatorSvgSanitizer

This module extends the FileValidatorModule class (requires PW 2.5.25 or better).

SVG file are scanned and elements checked against a configurable whitelist.
You can choose to sanitize or simply reject the file if it fails the check.

To learn about potential security issues with SVG files, and why this module is important, please read:
http://www.ei.rub.de/media/hgi/veroeffentlichungen/2011/10/19/svgSecurity-ccs11.pdf
https://www.hackinparis.com/slides/hip2k11/09-TheForbiddenImage.pdf

Forum support thread: https://processwire.com/talk/topic/9556-svg-sanitizer/

## License

This program is free software; you can redistribute it and/or
modify it under the terms of the GNU General Public License
as published by the Free Software Foundation; either version 2
of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.

(See included LICENSE file for full license text.)