fa4893d064
The previous getSanitisedContent() method fell back to strip_tags() when HTMLPurifier was unavailable. This fallback was insecure as strip_tags() does not sanitise attributes, allowing XSS via onclick, onerror, and javascript: URLs. Changes: - Created Services/HtmlSanitiser.php using HTMLPurifier as the sole sanitiser - Added ezyang/htmlpurifier as a required dependency in composer.json - Added boot-time validation that throws RuntimeException if missing - Removed insecure strip_tags() fallback from ContentItem model - Added 30+ unit tests covering XSS attack vectors Closes SEC-002 from TODO.md Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| AIUsage.php | ||
| ContentAuthor.php | ||
| ContentBrief.php | ||
| ContentItem.php | ||
| ContentMedia.php | ||
| ContentRevision.php | ||
| ContentTask.php | ||
| ContentTaxonomy.php | ||
| ContentWebhookEndpoint.php | ||
| ContentWebhookLog.php | ||