{ "info": { "author": "edX", "author_email": "oscm@edx.org", "bugtrack_url": null, "classifiers": [ "Development Status :: 3 - Alpha", "Framework :: Django", "Framework :: Django :: 1.11", "Framework :: Django :: 1.8", "Framework :: Django :: 2.0", "Intended Audience :: Developers", "License :: OSI Approved :: GNU Affero General Public License v3 or later (AGPLv3+)", "Natural Language :: English", "Programming Language :: Python :: 2", "Programming Language :: Python :: 2.7", "Programming Language :: Python :: 3", "Programming Language :: Python :: 3.6" ], "description": "xss-utils\n=============================\n\nUtilities to prevent possible Cross Site Scripting (XSS) attacks on Django/Mako templates.\n\nOverview\n------------------------\n\nThis repo houses utility functions to protect edx codebase (Python, Javascript and other templating\nengine eg django/mako) against possible XSS attacks. Helper code include html & js escaping filters\nfor django and mako templates.\nFor more information, please read the Best Practices Preventing XSS.\nhttps://openedx.atlassian.net/wiki/spaces/SEC/pages/99090697/Best+Practices+for+Preventing+XSS\n\nDocumentation\n-------------\n\nThe full documentation is in the docs directory\nTODO: Publish to https://xss-utils.readthedocs.org.\n\nLicense\n-------\n\nThe code in this repository is licensed under the AGPL 3.0 unless\notherwise noted.\n\nPlease see ``LICENSE.txt`` for details.\n\nHow To Contribute\n-----------------\n\nContributions are very welcome.\n\nPlease read `How To Contribute `_ for details.\n\nEven though they were written with ``edx-platform`` in mind, the guidelines\nshould be followed for Open edX code in general.\n\nPR description template should be automatically applied if you are sending PR from github interface; otherwise you\ncan find it it at `PULL_REQUEST_TEMPLATE.md `_\n\nIssue report template should be automatically applied if you are sending it from github UI as well; otherwise you\ncan find it at `ISSUE_TEMPLATE.md `_\n\nReporting Security Issues\n-------------------------\n\nPlease do not report security issues in public. Please email security@edx.org.\n\nGetting Help\n------------\n\nHave a question about this repository, or about Open edX in general? Please\nrefer to this `list of resources`_ if you need any assistance.\n\n.. _list of resources: https://open.edx.org/getting-help\n\n\n.. |pypi-badge| image:: https://img.shields.io/pypi/v/xss-utils.svg\n :target: https://pypi.python.org/pypi/xss-utils/\n :alt: PyPI\n\n.. |travis-badge| image:: https://travis-ci.org/edx/xss-utils.svg?branch=master\n :target: https://travis-ci.org/edx/xss-utils\n :alt: Travis\n\n.. |codecov-badge| image:: http://codecov.io/github/edx/xss-utils/coverage.svg?branch=master\n :target: http://codecov.io/github/edx/xss-utils?branch=master\n :alt: Codecov\n\n.. |doc-badge| image:: https://readthedocs.org/projects/xss-utils/badge/?version=latest\n :target: http://xss-utils.readthedocs.io/en/latest/\n :alt: Documentation\n\n.. |pyversions-badge| image:: https://img.shields.io/pypi/pyversions/xss-utils.svg\n :target: https://pypi.python.org/pypi/xss-utils/\n :alt: Supported Python versions\n\n.. |license-badge| image:: https://img.shields.io/github/license/edx/xss-utils.svg\n :target: https://github.com/edx/xss-utils/blob/master/LICENSE.txt\n :alt: License\n\n\nChange Log\n----------\n\n..\n All enhancements and patches to xss_utils will be documented\n in this file. It adheres to the structure of http://keepachangelog.com/ ,\n but in reStructuredText instead of Markdown (for ease of incorporation into\n Sphinx documentation and the PyPI description).\n\n This project adheres to Semantic Versioning (http://semver.org/).\n\n.. There should always be an \"Unreleased\" section for changes pending release.\n\nUnreleased\n~~~~~~~~~~\n\n*\n\n[0.1.0] - 2018-08-17\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n\nAdded\n_____\n\n* Utilities to enable html escaping, preventing Cross Site Scripting (XSS) attacks in Django templates.\n\n\n", "description_content_type": "", "docs_url": null, "download_url": "", "downloads": { "last_day": -1, "last_month": -1, "last_week": -1 }, "home_page": "https://github.com/edx/xss-utils", "keywords": "Django edx", "license": "AGPL 3.0", "maintainer": "", "maintainer_email": "", "name": "xss-utils", "package_url": "https://pypi.org/project/xss-utils/", "platform": "", "project_url": "https://pypi.org/project/xss-utils/", "project_urls": { "Homepage": "https://github.com/edx/xss-utils" }, "release_url": "https://pypi.org/project/xss-utils/0.1.1/", "requires_dist": [ "Django (<2.0,>=1.8)" ], "requires_python": "", "summary": "Utility functions to prevent possible XSS attack on django/mako templates", "version": "0.1.1" }, "last_serial": 5384788, "releases": { "0.1.0": [ { "comment_text": "", "digests": { "md5": "72bf64e3e64dfd80fc9b20650af6f25c", "sha256": "f5e420338937f38ba351e543e1e5220c72b172e44a19df04e6825d6718f393d0" }, "downloads": -1, "filename": "xss_utils-0.1.0-py2.py3-none-any.whl", "has_sig": false, "md5_digest": "72bf64e3e64dfd80fc9b20650af6f25c", "packagetype": "bdist_wheel", "python_version": "py2.py3", "requires_python": null, "size": 17177, "upload_time": "2018-10-24T18:41:12", "url": "https://files.pythonhosted.org/packages/ef/b5/0fb751c04f1233ebb08fe952e95a627e370af2ef7ae2d0c8f06782428abd/xss_utils-0.1.0-py2.py3-none-any.whl" }, { "comment_text": "", "digests": { "md5": "1c1c6f9e31196b67351a4de161282396", "sha256": "9b49fc662e199ae0889063f9fb3efb4af2e4fad727c7e57b4c71d01c20ad7d93" }, "downloads": -1, "filename": "xss-utils-0.1.0.tar.gz", "has_sig": false, "md5_digest": "1c1c6f9e31196b67351a4de161282396", "packagetype": "sdist", "python_version": "source", "requires_python": null, "size": 5193, "upload_time": "2018-10-24T18:41:13", "url": "https://files.pythonhosted.org/packages/dd/3b/b1ba9d9f6efc79fef40249c3d1d45a3cd0237c157ea24488df8948950957/xss-utils-0.1.0.tar.gz" } ], "0.1.1": [ { "comment_text": "", "digests": { "md5": "f188034d29add979b8db627ace91f494", "sha256": "5680a2c391e090af21ce56f78ad379b91bd3b478d42a5afa36c3091922d6b896" }, "downloads": -1, "filename": "xss_utils-0.1.1-py2.py3-none-any.whl", "has_sig": false, "md5_digest": "f188034d29add979b8db627ace91f494", "packagetype": "bdist_wheel", "python_version": "py2.py3", "requires_python": null, "size": 17178, "upload_time": "2019-06-11T06:00:21", "url": "https://files.pythonhosted.org/packages/20/af/5e9a4489d94373f0a6c6cdd9ed35fce8b113e09191542775ada002679455/xss_utils-0.1.1-py2.py3-none-any.whl" }, { "comment_text": "", "digests": { "md5": "bb98b1efcd875232ef0cd6f9540691ec", "sha256": "2beab5235cdccaa6362ca85ed43d90e4ad030f89eead0985f676ae5838d09820" }, "downloads": -1, "filename": "xss-utils-0.1.1.tar.gz", "has_sig": false, "md5_digest": "bb98b1efcd875232ef0cd6f9540691ec", "packagetype": "sdist", "python_version": "source", "requires_python": null, "size": 5242, "upload_time": "2019-06-11T06:00:22", "url": "https://files.pythonhosted.org/packages/f2/64/85e575ce33da946330454e580d2b0cf9849410700117d8e95e681b3bbc6d/xss-utils-0.1.1.tar.gz" } ] }, "urls": [ { "comment_text": "", "digests": { "md5": "f188034d29add979b8db627ace91f494", "sha256": "5680a2c391e090af21ce56f78ad379b91bd3b478d42a5afa36c3091922d6b896" }, "downloads": -1, "filename": "xss_utils-0.1.1-py2.py3-none-any.whl", "has_sig": false, "md5_digest": "f188034d29add979b8db627ace91f494", "packagetype": "bdist_wheel", "python_version": "py2.py3", "requires_python": null, "size": 17178, "upload_time": "2019-06-11T06:00:21", "url": "https://files.pythonhosted.org/packages/20/af/5e9a4489d94373f0a6c6cdd9ed35fce8b113e09191542775ada002679455/xss_utils-0.1.1-py2.py3-none-any.whl" }, { "comment_text": "", "digests": { "md5": "bb98b1efcd875232ef0cd6f9540691ec", "sha256": "2beab5235cdccaa6362ca85ed43d90e4ad030f89eead0985f676ae5838d09820" }, "downloads": -1, "filename": "xss-utils-0.1.1.tar.gz", "has_sig": false, "md5_digest": "bb98b1efcd875232ef0cd6f9540691ec", "packagetype": "sdist", "python_version": "source", "requires_python": null, "size": 5242, "upload_time": "2019-06-11T06:00:22", "url": "https://files.pythonhosted.org/packages/f2/64/85e575ce33da946330454e580d2b0cf9849410700117d8e95e681b3bbc6d/xss-utils-0.1.1.tar.gz" } ] }