mirror of https://github.com/FreshRSS/FreshRSS.git synced 2025-12-24 05:57:45 -05:00

Files

Inverle 500d05f3c5 Implement whitelist for SimplePie sanitizer (#7924 )

* Implement whitelist for SimplePie sanitizer

ref: https://github.com/FreshRSS/FreshRSS/pull/7770#issuecomment-3140334326

https://github.com/FreshRSS/simplepie/pull/53
https://github.com/simplepie/simplepie/pull/947

* Remove `<plaintext>` from whitelist

* Improve order

* Remove some tags from whitelist

* Revert partially

* sync

* Display contents of `<noscript>` and `<noembed>`

* sync

* Allow use of `<track>`

* sync again

* Sync to SimplePie fork
https://github.com/FreshRSS/simplepie/pull/53

* Alphabetic order

* Reduce list of stripped attributes

* Temporarily strip some attributes

---------

Co-authored-by: Alexandre Alapetite <alexandre@alapetite.fr>

2025-11-02 00:28:35 +01:00

core-extensions

Fix/improve <textarea> (#8171 )

2025-11-01 10:15:59 +01:00

marienfressinaud/lib_opml

Update lib_opml to v0.5.1 (#5188 )

2023-03-10 20:04:46 +01:00

Minz

Add support for extension compatibility (#8081 )

2025-10-21 23:49:06 +02:00

phpgt/cssxpath

CssXPath: Implement ~ subsequent-sibling (#8154 )

2025-10-25 11:22:09 +02:00

phpmailer/phpmailer

Update phpmailer/phpmailer requirement from 6.11.1 to 7.0.0 in /lib (#8180 )

2025-11-01 23:27:37 +01:00

simplepie/simplepie

Implement whitelist for SimplePie sanitizer (#7924 )

2025-11-02 00:28:35 +01:00

.gitignore

CssXPath: Implement ~ subsequent-sibling (#8154 )

2025-10-25 11:22:09 +02:00

.htaccess

Apache protect more non-public folders and files (#6881 )

2024-10-11 09:25:43 +02:00

composer.json

Implement whitelist for SimplePie sanitizer (#7924 )

2025-11-02 00:28:35 +01:00

favicons.php

Bump phpstan/phpstan from 2.1.29 to 2.1.31 (#8156 )

2025-10-25 11:21:28 +02:00

http-conditional.php

Change how files are included (#7916 )

2025-09-05 15:56:46 +02:00

index.html

Apache protect more non-public folders and files (#6881 )

2024-10-11 09:25:43 +02:00

lib_date.php

Filter on last user modified (#8093 )

2025-10-15 00:12:19 +02:00

lib_install.php

Strengthen some crypto (#8061 )

2025-10-04 14:32:18 +02:00

lib_rss.php

Implement whitelist for SimplePie sanitizer (#7924 )

2025-11-02 00:28:35 +01:00

README.md

Allow SimplePie updates with composer (#4374 )

2024-09-14 23:11:10 +02:00

README.md

Libraries

SimplePie

FreshRSS uses a forked version of SimplePie, with a number of patches.

See the read-me of our fork.

Updating libraries

Some of the libraries in this folder can be updated semi-automatically by invoking:

cd ./FreshRSS/lib/
composer update --no-autoloader

Remember to read the change-logs, proof-read the changes, preserve possible local patches, add irrelevant files to .gitignore (minimal installation), and test before committing.