HTML::StripScripts is a Perl module for neutralizes scripting constructs in
HTML, leaving as much non-scripting markup in place as possible. This allows
web applications to display HTML originating from an untrusted source without
introducing cross-site scripting (XSS) vulnerabilities.
.
The process is based on whitelists of tags, attributes and attribute values.
This approach is the most secure against disguised scripting constructs hidden
in malicious HTML documents.
.
As well as removing scripting constructs, this module ensures that there is a
matching end for each start tag, and that the tags are properly nested.
.
You will probably use HTML::StripScripts::Parser rather than using this module
directly (see libhtml-stripscripts-parser-perl).
Installed Size: 106.5 kB
Architectures: all