Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/openedx/xss-utils
This repo contains utility functions for Django and Mako templates to remove potential XSS attacks in templates.
https://github.com/openedx/xss-utils
Last synced: about 1 month ago
JSON representation
This repo contains utility functions for Django and Mako templates to remove potential XSS attacks in templates.
- Host: GitHub
- URL: https://github.com/openedx/xss-utils
- Owner: openedx
- License: agpl-3.0
- Created: 2018-08-13T14:00:47.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2024-04-08T04:03:11.000Z (9 months ago)
- Last Synced: 2024-04-09T23:10:52.635Z (9 months ago)
- Language: Python
- Size: 301 KB
- Stars: 5
- Watchers: 76
- Forks: 5
- Open Issues: 6
-
Metadata Files:
- Readme: README.rst
- Changelog: CHANGELOG.rst
- License: LICENSE
- Authors: AUTHORS
Awesome Lists containing this project
README
xss-utils
=============================
Utilities to prevent possible Cross Site Scripting (XSS) attacks on Django/Mako templates.
Overview
------------------------
This repo houses utility functions to protect edx codebase (Python, Javascript and other templating
engine eg django/mako) against possible XSS attacks. Helper code include html & js escaping filters
for django and mako templates.
For more information, please read `Preventing Cross Site Scripting Vulnerabilities `_.
Documentation
-------------
The full documentation is in the docs directory
TODO: Publish to https://xss-utils.readthedocs.org.
License
-------
The code in this repository is licensed under the AGPL 3.0 unless
otherwise noted.
Please see ``LICENSE.txt`` for details.
How To Contribute
-----------------
Contributions are very welcome.
Please read `How To Contribute `_ for details.
PR description template should be automatically applied if you are sending PR from github interface; otherwise you
can find it it at `PULL_REQUEST_TEMPLATE.md `_
Issue report template should be automatically applied if you are sending it from github UI as well; otherwise you
can find it at `ISSUE_TEMPLATE.md `_
Reporting Security Issues
-------------------------
Please do not report security issues in public. Please email [email protected].
Getting Help
------------
Have a question about this repository, or about Open edX in general? Please
refer to this `list of resources`_ if you need any assistance.
.. _list of resources: https://open.edx.org/getting-help
.. |pypi-badge| image:: https://img.shields.io/pypi/v/xss-utils.svg
:target: https://pypi.python.org/pypi/xss-utils/
:alt: PyPI
.. |ci-badge| image:: https://github.com/openedx/xss-utils/workflows/Python%20CI/badge.svg?branch=master
:target: https://github.com/openedx/xss-utils/actions?query=workflow%3A%22Python+CI%22
:alt: CI
.. |codecov-badge| image:: http://codecov.io/github/edx/xss-utils/coverage.svg?branch=master
:target: http://codecov.io/github/edx/xss-utils?branch=master
:alt: Codecov
.. |doc-badge| image:: https://readthedocs.org/projects/xss-utils/badge/?version=latest
:target: http://xss-utils.readthedocs.io/en/latest/
:alt: Documentation
.. |pyversions-badge| image:: https://img.shields.io/pypi/pyversions/xss-utils.svg
:target: https://pypi.python.org/pypi/xss-utils/
:alt: Supported Python versions
.. |license-badge| image:: https://img.shields.io/github/license/edx/xss-utils.svg
:target: https://github.com/openedx/xss-utils/blob/master/LICENSE.txt
:alt: License