[owasp-antisamy] AntiSamy 1.5 released !
kristian.rosenvold at gmail.com
Tue Jan 29 06:37:58 UTC 2013
After over a year, version 1.5 is finally released!
This version requires java 1.5.
1.5 promises to be significantly faster than previous releases; your
mileage will vary anything from just some percent to a full 5 times faster,
depending on use cases. A lot of attention has been put to typical "server"
validation cases in this release.
The DOM parser is still the fastest by a clear margin if you do a lot of
parameter validation (short strings). If you additionally only use AntiSamy
to avoid malicious data the DOM parser will be even faster if you avoid
We also fixed issue 133, 135, 147 & 121. Nekohtml has also been upgraded to
avoid all sorts of interesting OOME's and
stack overflows. Also, this version no longer depends on xercesImpl,
avoiding a whole bunch of interesting conflicts.
The internal interfaces have changed quite significantly; the external
interfaces have very minor changes that should not affect most users.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-antisamy