| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| | * | Add protection against XML and gzip attacks to xmlrpclib | Christian Heimes | 2013-02-15 | 3 | -14/+206 | |
| | | | ||||||
| | * | tests for iterparse | Christian Heimes | 2013-02-15 | 1 | -11/+26 | |
| | | | ||||||
| | * | add module for xmlrpc patch | Christian Heimes | 2013-02-15 | 1 | -0/+21 | |
| | | | ||||||
| | * | Document forbid_external | Christian Heimes | 2013-02-15 | 1 | -6/+12 | |
| | | | ||||||
| | * | Fix for iterparse patch for Python 2.7 | Christian Heimes | 2013-02-15 | 1 | -2/+5 | |
| | | | ||||||
| | * | don't load all modules right away | Christian Heimes | 2013-02-15 | 1 | -8/+8 | |
| | | | ||||||
| | * | hack to get bound methods of patched iterparse right | Christian Heimes | 2013-02-15 | 1 | -11/+21 | |
| | | | ||||||
| | * | xmlrpclib's ExpatParser needs protection, too | Christian Heimes | 2013-02-15 | 3 | -26/+78 | |
| | | | ||||||
| | * | more thanks and explain others | Christian Heimes | 2013-02-15 | 1 | -1/+13 | |
| | | | ||||||
| | * | add forbid_external to all classs and functions | Christian Heimes | 2013-02-15 | 7 | -34/+64 | |
| | | | ||||||
| | * | remove libxml2 Python lib from table | Christian Heimes | 2013-02-14 | 1 | -13/+13 | |
| | | | ||||||
| | * | include README.html and void.css | Christian Heimes | 2013-02-14 | 1 | -1/+2 | |
| | | | ||||||
| | * | add style sheet for README.html | Christian Heimes | 2013-02-14 | 2 | -1/+440 | |
| | | | ||||||
| | * | document defusedxml modules | Christian Heimes | 2013-02-14 | 1 | -0/+28 | |
| | | | ||||||
| | * | start to document package | Christian Heimes | 2013-02-14 | 1 | -14/+63 | |
| | | | ||||||
| | * | test for cyclic entities | Christian Heimes | 2013-02-14 | 2 | -0/+27 | |
| | | | ||||||
| | * | added CVE | Christian Heimes | 2013-02-14 | 1 | -0/+14 | |
| | | | ||||||
| | * | more thanks and xinclude | Christian Heimes | 2013-02-14 | 1 | -6/+23 | |
| | | | ||||||
| | * | xinclude | Christian Heimes | 2013-02-14 | 1 | -2/+16 | |
| | | | ||||||
| | * | Add Genshi tests | Christian Heimes | 2013-02-14 | 4 | -13/+27 | |
| | | | ||||||
| | * | more testing and docs for ruby and php | Christian Heimes | 2013-02-13 | 5 | -4/+37 | |
| | | | ||||||
| | * | more on general XML attacks | Christian Heimes | 2013-02-13 | 1 | -5/+13 | |
| | | | ||||||
| | * | Python 3.1 compatibility | Christian Heimes | 2013-02-13 | 1 | -3/+74 | |
| | | | | | | | | | test xpath injection | |||||
| | * | Skip unavailable Python versions | Christian Heimes | 2013-02-13 | 1 | -2/+7 | |
| | | | ||||||
| | * | Python 3.1 compatibility | Christian Heimes | 2013-02-13 | 3 | -26/+32 | |
| | | | ||||||
| | * | moved some sections around | Christian Heimes | 2013-02-13 | 1 | -38/+82 | |
| | | | | | | | | | | | document decompression bombs add some infos about Java and .NET | |||||
| | * | Grammar touch-ups | Brett Cannon | 2013-02-12 | 1 | -33/+34 | |
| | | | ||||||
| | * | add examples for other languages | Christian Heimes | 2013-02-12 | 5 | -0/+66 | |
| | | | ||||||
| | * | use a working XML doc | Christian Heimes | 2013-02-12 | 1 | -1/+1 | |
| | | | ||||||
| | * | quote url:// | Christian Heimes | 2013-02-12 | 1 | -7/+7 | |
| | | | ||||||
| | * | document even more cases | Christian Heimes | 2013-02-12 | 1 | -12/+84 | |
| | | | ||||||
| | * | reformat thanks | Christian Heimes | 2013-02-12 | 1 | -3/+4 | |
| | | | ||||||
| | * | fixed externel file ref test on Python 3.x | Christian Heimes | 2013-02-12 | 1 | -1/+5 | |
| | | | ||||||
| | * | implement iterparser patch for Python 2.6 | Christian Heimes | 2013-02-12 | 2 | -5/+25 | |
| | | | ||||||
| | * | thank you to my employer | Christian Heimes | 2013-02-12 | 1 | -1/+5 | |
| | | | ||||||
| | * | document billion laughs and attribute blowup | Christian Heimes | 2013-02-12 | 1 | -18/+48 | |
| | | | ||||||
| | * | prefix all callback methods with 'defused_' so it is actually possible to ↵ | Christian Heimes | 2013-02-12 | 6 | -42/+89 | |
| | | | | | | | | | | | | | call the original methods import tostring from all etree modules | |||||
| | * | add test for external entity with reference to a local file:// url. | Christian Heimes | 2013-02-12 | 2 | -35/+57 | |
| | | | | | | | | | parse and parseString methods of test classes now return something useful | |||||
| | * | corrected list for external entity expansion | Christian Heimes | 2013-02-11 | 1 | -1/+1 | |
| | | | ||||||
| | * | absolute imports and print functions for everybody | Christian Heimes | 2013-02-09 | 9 | -12/+19 | |
| | | | | | | | | | more module doc strings | |||||
| | * | Renamed defusedxml.lxml.check_dtd() to check_docinfo() | Christian Heimes | 2013-02-09 | 2 | -6/+18 | |
| | | | | | | | | | fixed entity exception for lxml 3+ | |||||
| | * | update changelog | Christian Heimes | 2013-02-09 | 1 | -0/+4 | |
| | | | ||||||
| | * | more tests | Christian Heimes | 2013-02-09 | 1 | -3/+32 | |
| | | | ||||||
| | * | rename ExternalEntitiesForbidden to ExternalReferenceForbidden (it's raised ↵ | Christian Heimes | 2013-02-09 | 5 | -31/+71 | |
| | | | | | | | | | | | | | | | when an external reference is about to be resolved) unify the argument names in callback functions use proper arguments and formatting in exception classes | |||||
| | * | post release changes | Christian Heimes | 2013-02-08 | 2 | -1/+7 | |
| | | | ||||||
| | * | Added tag v0.1 for changeset 9ae768d4ccac | Christian Heimes | 2013-02-08 | 0 | -0/+0 | |
| | | | ||||||
| | * | prepare first releasev0.1 | Christian Heimes | 2013-02-08 | 2 | -1/+5 | |
| | | | ||||||
| | * | whitespace cleanup | Christian Heimes | 2013-02-08 | 3 | -1/+6 | |
| | | | ||||||
| | * | lxml needs binary content on Python 3.x | Christian Heimes | 2013-02-08 | 1 | -0/+1 | |
| | | | ||||||
| | * | added more test cases for lxml | Christian Heimes | 2013-02-08 | 2 | -0/+45 | |
| | | | ||||||
 |
index : delta/python-packages/defusedxml-git.git | |
| github.com: tiran/defusedxml.git |
| summaryrefslogtreecommitdiff |