wpl Source Code Rss Feed

Source code checked in, #94877

Project Collection Service Accounts — Mon, 01 Oct 2012 22:38:35 GMT

Upgrade: New Version of LabDefaultTemplate.xaml. To upgrade your build definitions, please visit the following link: http://go.microsoft.com/fwlink/?LinkId=254563

Source code checked in, #94876

Project Collection Service Accounts — Mon, 01 Oct 2012 22:31:06 GMT

Checked in by server upgrade

Source code checked in, #72192

bdorrans — Sat, 23 Apr 2011 19:25:23 GMT

AntiXSS v4.1 Beta 1

Source code checked in, #61742

bdorrans — Fri, 01 Oct 2010 17:56:26 GMT

Source code checked in, #61741

bdorrans — Fri, 01 Oct 2010 17:53:27 GMT

Sanitizer tidy up

Source code checked in, #61740

bdorrans — Fri, 01 Oct 2010 17:51:33 GMT

Removing old WPL solution

Source code checked in, #61739

bdorrans — Fri, 01 Oct 2010 17:51:07 GMT

Removing old MEF source

Source code checked in, #61737

bdorrans — Fri, 01 Oct 2010 17:42:17 GMT

Added new SRE solution

Source code checked in, #61736

bdorrans — Fri, 01 Oct 2010 17:40:29 GMT

AntiXss v4.0 SRE Oct 2010 CTP

Patch Uploaded: #6749

eoftedal — Mon, 13 Sep 2010 12:36:13 GMT

eoftedal has uploaded a patch.

Description:
Native JSON requires all non-safe characters to be encoded using unicode (\unnnn instead of \xnn) and that " is used for quotes instead of single quotes.

I've added a new method called JsonEscape(string input, bool emitQuotes) which builds on and behaves like JavascriptEncode except it always uses \unnnn encoding and emits double quotes.

Source code checked in, #57274

_TFSSERVICE — Wed, 28 Jul 2010 22:13:23 GMT

Checked in by server upgrade

Source code checked in, #55849

anilkr — Fri, 02 Jul 2010 18:49:07 GMT

Updated to fix the bug related to application variables.

Source code checked in, #53175

bdorrans — Wed, 02 Jun 2010 19:18:59 GMT

Removed references to installer projects which aren't published.

Source code checked in, #52310

bdorrans — Thu, 27 May 2010 17:06:37 GMT

May 2010 CTP

Source code checked in, #48984

bdorrans — Wed, 12 May 2010 23:49:31 GMT

Moving 3.0 to release directory

Source code checked in, #48983

bdorrans — Wed, 12 May 2010 23:44:01 GMT

Moving 3.1 to release directory

Source code checked in, #48982

bdorrans — Wed, 12 May 2010 23:43:27 GMT

Create release directory for branch migration.

Source code checked in, #48981

bdorrans — Wed, 12 May 2010 23:41:27 GMT

Creating new directory structure for forthcoming CTP

Source code checked in, #48976

bdorrans — Wed, 12 May 2010 23:31:45 GMT

Clean up of empty & binary directories in prep for trunk push

Patch Uploaded: #4844

jk — Wed, 06 Jan 2010 21:55:31 GMT

jk has uploaded a patch.

Description:
This patch contains 1 source code file, HtmlWriter.cs, based on the 3.1 release version.

The WriteTagEnd method was incorrectly handling closing out tags which are empty content tags (e.g. IMG, BR, HR, INPUT). The when calling AntiXss.GetSafeHtmlFragment with an input string like <div><img src="javascript:alert(String.fromCharCode(88,83,83))" /></div>, the closing slash was not being emitted in the HtmlWriter, thus creating invalid xhtml (<div><img src=""></div>) instead of the properly closed xhtml (<div><img src="" /></div>

Please contact me if I can provide additional details.
Thanks!
Jeff Knutson
jk@jeffknutson.net