purify | An HTML Purifier / Sanitizer for Laravel

I am using HTML_Purifier to sanitize user input. So sending the text to server in an ajax call, sanitizing it, storing it in the database, and then returning the sanitized string back to the browser to update on the screen. The problem I have, is the apostrophe is then prefixed with a backslash when displayed on the page.

I have a strange issue. I use CKEditor-4 to collect formatted text from user in form of html. Also, the html content is filtered using htmlpurifier from the server.

When the user use quotes like ”, ’ and “ CKEditor converts them into html entities like ”, ’, and “, which is fine. The issue is, when I filter them using htmlpurifier - this quotes get's automatically decoded. This prevents the content from: being presented to user for later edit as the quotes are literally encoded in strage ways like “

How do i fix this? I think, if I could stop htmlpurifier from automatically decoding things, this would work, But I am new to htmlpurifier - so I can't find a way.

I have tried using htmlentities before passing it to htmlpurifier. but it would encode the whole html, Hence: stopping htmlpurifier from purifying html at all.

just finished a huge app and tried to deploy it on github but it started throwing 404 errors. I tried to create a fresh new one with just one change in the HTML (just to see that is customized) and it's throwing the same error. The dev version works, the production not.

Here is the error:

DevTools failed to load SourceMap: Could not load content for chrome-> extension://hgmhmanijnjhaffoampdlllchpolkdnj/js/lib/purify.min.js.map: HTTP error: status code

404, net::ERR_UNKNOWN_URL_SCHEME favicon.ico:1 GET https://kirilchristov.github.io/favicon.ico 404 manifest.json:1 GET https://kirilchristov.github.io/manifest.json 404 manifest.json:1 Manifest: Line: 1, column: 1, Syntax error.

Here is a link to the repo: Github Repo

Here is the package.json with the scripts:

I want to install the latest version of buefy in my project, which is 0.9.3. Currently I have installed 0.8.3

If I run npm install -g buefy@latest I receive

npm WARN buefy@0.9.3 requires a peer of vue@^2.6.11 but none is installed. You must install peer dependencies yourself.

• buefy@0.9.3 updated 1 package in 0.511s

However, Buefey 0.8.2 remains installed in package.json

I also have difficulties to understand the error, because I have vue 2.6.12 installed.

I tried to run (as explained in https://stackoverflow.com/a/58254678/2311074)

cant load static files at all and when I inspect on the template in the network it says 404 not found and in the network, it's not picking the correct path even though everything in settings and template seems to be correct! Please help tried whatever I could but the issue isn't resolved tried few solutions given in the past regarding such issue but didn't work.

For some reason HTMLPurifier seems to be removing the allowfullscreen element from iframes and I'm not sure why, I've done some research and can't seem it find an answer that isn't several years old. Below is how I initiate my purifier.

Using htmlpurifier 4.10, anchor name tags are being stripped out of text.

Current config:

Using HTML Purifier (ezyang/htmlpurifier) or specifically (stevebauman/purify) for Laravel 7 (powered by the former), is it possible to use an alternative cache than the filesystem?

The docs imply that you can use the FS, or null (not recommended) but also that the FS is just an implementation. Are other implementations possible (ideally Redis), and how would they be configured?

I would like to use DOMPurify to sanitise some HTML content, but I'd like to preserve the HTML comments. Is that possible?

You can see what it does in this example - if you enter markup with a comment the comment is stripped out.

DOMPurify seems very configurable, but the docs don't mention what term to use to specify HTML comment as an allowed tag.