| Age | Commit message (Collapse) | Author |
|
Backport of 6a0291bda from master.
|
|
Django's custom HTMLParser for older Python versions cannot
parse convoluted syntax.
|
|
The fact that strip_tags cannot guarantee to really strip all
non-safe HTML content was not clear enough. Also see:
https://www.djangoproject.com/weblog/2014/mar/22/strip-tags-advisory/
Backport of 6ca6c36f8 from master.
|
|
Backport of b70c371fc1f18ea0c43b503122df3f311afc7105 from master.
|
|
|
|
The regex method used until now for the strip_tags utility is fast,
but subject to flaws and security issues. Consensus and good
practice lead use to use a slower but safer method.
|
|
|