[Owasp-antisamy] testing question

J Irving owasp at erf.sh
Thu Jun 12 15:23:03 EDT 2008


Hello

I've been poking around the code, and I see there's a set of unit
tests which runs several known to be bad strings through AntiSamy.
Have you guys done any fuzzing?

The reason I mention this is that I spotted issue 12 in your tracker,
and it occurred to me that it would be interesting to find any other
similar errors or unexpected responses. It seems that the easiest way
to do this would be to throw lots of random text at it. If someone has
already done this work (or something similar) please respond.

Thanks.

   cheers, J


More information about the Owasp-antisamy mailing list