danasjukna
diff --git a/‎aggregate/pom.xml‎
Lines changed: 3 additions & 3 deletions b/‎aggregate/pom.xml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎empiricism/pom.xml‎
Lines changed: 3 additions & 3 deletions b/‎empiricism/pom.xml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎html-types/pom.xml‎
Lines changed: 3 additions & 3 deletions b/‎html-types/pom.xml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎parent/pom.xml‎
Lines changed: 7 additions & 105 deletions b/‎parent/pom.xml‎
Lines changed: 7 additions & 105 deletions
diff --git a/‎pom.xml‎
Lines changed: 3 additions & 2 deletions b/‎pom.xml‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎src/main/java/org/owasp/html/CharReplacements.java‎
Lines changed: 100 additions & 0 deletions b/‎src/main/java/org/owasp/html/CharReplacements.java‎
Lines changed: 100 additions & 0 deletions
@@ -1,14 +1,14 @@
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
  <modelVersion>4.0.0</modelVersion>
- <groupId>com.googlecode.owasp-java-html-sanitizer</groupId>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>aggregate</artifactId>
  <packaging>pom</packaging>
  <version>20180219.2-SNAPSHOT</version>
  <parent>
  <relativePath>../parent</relativePath>
- <groupId>com.googlecode.owasp-java-html-sanitizer</groupId>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>parent</artifactId>
- <version>20180219.2-SNAPSHOT</version>
+ <version>20180407.2-SNAPSHOT</version>
  </parent>
 
  <modules>
 
@@ -1,14 +1,14 @@
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
  <modelVersion>4.0.0</modelVersion>
- <groupId>com.googlecode.owasp-java-html-sanitizer</groupId>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>html-types</artifactId>
  <version>20180219.2-SNAPSHOT</version>
  <packaging>jar</packaging>
  <parent>
  <relativePath>../parent</relativePath>
- <groupId>com.googlecode.owasp-java-html-sanitizer</groupId>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>parent</artifactId>
- <version>20180219.2-SNAPSHOT</version>
+ <version>20180407.2-SNAPSHOT</version>
  </parent>
 
  <name>empiricism</name>
 
@@ -1,14 +1,14 @@
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
  <modelVersion>4.0.0</modelVersion>
- <groupId>com.googlecode.owasp-java-html-sanitizer</groupId>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>html-types</artifactId>
  <version>20180219.2-SNAPSHOT</version>
  <packaging>jar</packaging>
  <parent>
  <relativePath>../parent</relativePath>
- <groupId>com.googlecode.owasp-java-html-sanitizer</groupId>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>parent</artifactId>
- <version>20180219.2-SNAPSHOT</version>
+ <version>20180407.2-SNAPSHOT</version>
  </parent>
 
  <name>OWASP Java HTML Sanitizer Safe HTML Compatibility</name>
 
@@ -1,8 +1,8 @@
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
  <modelVersion>4.0.0</modelVersion>
- <groupId>com.googlecode.owasp-java-html-sanitizer</groupId>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>parent</artifactId>
- <version>20180219.2-SNAPSHOT</version>
+ <version>20180407.2-SNAPSHOT</version>
 
  <packaging>pom</packaging>
 
@@ -12,7 +12,7 @@ A fast and easy to configure HTML Sanitizer written in Java which
 lets you include HTML authored by third-parties in your web
 application while protecting against XSS.
  </description>
- <url>https://github.com/OWASP/java-html-sanitizer</url>
+ <url>https://github.com/danasjukna/java-html-sanitizer</url>
  <licenses>
  <license>
  <name>Apache License, Version 2.0</name>
@@ -22,71 +22,11 @@ application while protecting against XSS.
  </licenses>
 
  <scm>
- <connection>scm:git:git://github.com/OWASP/java-html-sanitizer.git</connection>
- <developerConnection>scm:git:git://github.com/OWASP/java-html-sanitizer.git</developerConnection>
- <url>https://github.com/OWASP/java-html-sanitizer</url>
+ <connection>scm:git:git://github.com/danasjukna/java-html-sanitizer.git</connection>
+ <developerConnection>scm:git:git://github.com/danasjukna/java-html-sanitizer.git</developerConnection>
+ <url>https://github.com/danasjukna/java-html-sanitizer</url>
  </scm>
 
- <distributionManagement>
- <snapshotRepository>
- <id>ossrh</id>
- <url>https://oss.sonatype.org/content/repositories/snapshots</url>
- </snapshotRepository>
- <repository>
- <id>ossrh</id>
- <url>https://oss.sonatype.org/service/local/staging/deploy/maven2/</url>
- </repository>
- </distributionManagement>
-
- <issueManagement>
- <system>GitHub</system>
- <url>https://github.com/OWASP/java-html-sanitizer/issues</url>
- </issueManagement>
-
- <organization>
- <name>OWASP</name>
- <url>https://owasp.org</url>
- </organization>
-
- <developers>
- <developer>
- <id>mikesamuel</id>
- <name>Mike Samuel</name>
- <email>mikesamuel@gmail.com</email>
- </developer>
- </developers>
-
- <mailingLists>
- <mailingList>
- <name>User Support List</name>
- <subscribe>owasp-java-html-sanitizer-support+subscribe@googlegroups.com</subscribe>
- <unsubscribe>owasp-java-html-sanitizer-support+unsubscribe@googlegroups.com</unsubscribe>
- <archive>https://groups.google.com/forum/#!forum/owasp-java-html-sanitizer-support</archive>
- </mailingList>
- </mailingLists>
-
- <reporting>
- <plugins>
- <!-- `mvn compile site` will generate target/site/findbugs.html -->
- <!-- http://gleclaire.github.io/findbugs-maven-plugin/dependency-info.html -->
- <plugin>
- <groupId>org.codehaus.mojo</groupId>
- <artifactId>findbugs-maven-plugin</artifactId>
- <version>3.0.2</version>
- <configuration>
- <!--
- Enables analysis which takes more memory but finds more bugs.
- If you run out of memory, changes the value of the effort element
- to 'Low'.
- -->
- <effort>Max</effort>
- <!-- Reports all bugs (other values are medium and max) -->
- <threshold>Low</threshold>
- </configuration>
- </plugin>
- </plugins>
- </reporting>
-
  <properties>
  <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
  <project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
@@ -95,45 +35,7 @@ application while protecting against XSS.
  <build>
  <pluginManagement>
  <plugins>
- <plugin>
- <groupId>external.atlassian.jgitflow</groupId>
- <artifactId>jgitflow-maven-plugin</artifactId>
- <version>1.0-m5.1</version>
- <configuration>
- <pushReleases>true</pushReleases>
- <enableSshAgent>true</enableSshAgent>
- <autoVersionSubmodules>true</autoVersionSubmodules>
- <updateDependencies>true</updateDependencies>
- </configuration>
- </plugin>
- <plugin>
- <groupId>org.sonatype.plugins</groupId>
- <artifactId>nexus-staging-maven-plugin</artifactId>
- <version>1.6.3</version>
- <extensions>true</extensions>
- <configuration>
- <serverId>ossrh</serverId>
- <nexusUrl>https://oss.sonatype.org/</nexusUrl>
- <autoReleaseAfterClose>true</autoReleaseAfterClose>
- <!-- This staging profile ID gleaned by logging in to
- oss.sonatype.org, clicking "Staging Profiles" on the left,
- selecting "com.googlecode.owasp-java-html-sanitizer",
- and extracting the most hexy looking bit from the URL which
- looks like
- https://oss.sonatype.org/#stagingProfiles;5fd62edf6679f6
- -->
- <stagingProfileId>199eb0ec1ec380</stagingProfileId>
- <executions>
- <execution>
- <id>default-deploy</id>
- <phase>deploy</phase>
- <goals>
- <goal>deploy</goal>
- </goals>
- </execution>
- </executions>
- </configuration>
- </plugin>
+ 
  <!-- For building the source jar. -->
  <plugin>
  <groupId>org.apache.maven.plugins</groupId>
 
@@ -1,12 +1,13 @@
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
  <modelVersion>4.0.0</modelVersion>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>owasp-java-html-sanitizer</artifactId>
  <packaging>jar</packaging>
  <parent>
  <relativePath>parent</relativePath>
- <groupId>com.googlecode.owasp-java-html-sanitizer</groupId>
+ <groupId>lt.hrm.owasp-java-html-sanitizer</groupId>
  <artifactId>parent</artifactId>
- <version>20180219.2-SNAPSHOT</version>
+ <version>20180407.2-SNAPSHOT</version>
  </parent>
 
  <name>OWASP Java HTML Sanitizer</name>
 
@@ -0,0 +1,100 @@
+package org.owasp.html;
+
+public class CharReplacements {
+
+public static final CharReplacements DEFAULT = new CharReplacements();
+
+public static final String PLAINTEXT_BRACE_REPLACEMENT = "{<!-- -->";
+public static final String TAG_BRACE_REPLACEMENT = "{\u200B";
+
+private String plaintextBraceReplacement = PLAINTEXT_BRACE_REPLACEMENT;
+private String tagBraceReplacement = TAG_BRACE_REPLACEMENT;
+
+/**
+ * Maps ASCII chars that need to be encoded to an equivalent HTML entity.
+ */
+String[] replacementTable;
+
+public CharReplacements(){
+this.replacementTable = initDefaultReplacementsTable();
+}
+
+public CharReplacements(CharReplacements oth){
+this.replacementTable = new String[oth.replacementTable.length];
+System.arraycopy(oth.replacementTable, 0, this.replacementTable, 0, oth.replacementTable.length);
+}
+
+public CharReplacements clone(){
+return new CharReplacements(this);
+}
+
+public CharReplacements setPlaintextBraceReplacement(String braceReplacement) {
+this.plaintextBraceReplacement = braceReplacement;
+return this;
+}
+
+public CharReplacements setTagBraceReplacement(String braceReplacement) {
+this.tagBraceReplacement = braceReplacement;
+return this;
+}
+
+public CharReplacements dontReplace(char ... chars){
+for (char ch: chars)
+if (ch < replacementTable.length)
+replacementTable[ch] = null;
+
+return this;
+}
+
+public boolean hasReplacementForChar(char ch) {
+return ch < replacementTable.length;
+}
+
+public String getReplacementForChar(char ch, String text, int pos, int textLen, boolean isInPlaintextMode) {
+String repl = replacementTable[ch];
+
+if (repl != null)
+return repl;
+
+if (isDoubleBrace(ch, text, pos, textLen))
+repl = isInPlaintextMode ? plaintextBraceReplacement : tagBraceReplacement;
+
+return repl;
+}
+
+private boolean isDoubleBrace(char ch, String text, int pos, int textLen) {
+return ch == '{' && 
+ (pos + 1 == textLen || text.charAt(pos + 1) == '{');
+}
+
+private String[] initDefaultReplacementsTable() {
+String[] replTbl = new String[0x80];
+
+for (int i = 0; i < ' '; ++i) {
+// We elide control characters so that we can ensure that our output
+// is
+// in the intersection of valid HTML5 and XML. According to
+// http://www.w3.org/TR/2008/REC-xml-20081126/#charsets
+// Char ::= #x9 | #xA | #xD | [#x20-#xD7FF]
+// | [#xE000-#xFFFD] | [#x10000-#x10FFFF]
+if (i != '\t' && i != '\n' && i != '\r') {
+replTbl[i] = ""; // Elide
+}
+}
+// "&#34;" is shorter than "&quot;"
+replTbl['"'] = "&#" + ((int) '"') + ";"; // Attribute delimiter.
+replTbl['&'] = "&amp;"; // HTML special.
+// We don't use &apos; since that is not in the intersection of
+// HTML&XML.
+replTbl['\''] = "&#" + ((int) '\'') + ";"; // Attribute delimiter.
+replTbl['+'] = "&#" + ((int) '+') + ";"; // UTF-7 special.
+replTbl['<'] = "&lt;"; // HTML special.
+replTbl['='] = "&#" + ((int) '=') + ";"; // Special in attributes.
+replTbl['>'] = "&gt;"; // HTML special.
+replTbl['@'] = "&#" + ((int) '@') + ";"; // Conditional
+// compilation.
+replTbl['`'] = "&#" + ((int) '`') + ";"; // Attribute delimiter.
+
+return replTbl;
+}
+}