24 calls to Xss::filter() in Drupal 8
- AlterTest::testExecutionOrder in core/
modules/ system/ tests/ src/ Functional/ Form/ AlterTest.php - Tests execution order of hook_form_alter() and hook_form_FORM_ID_alter().
- AssertContentTrait::getTextContent in core/
tests/ Drupal/ KernelTests/ AssertContentTrait.php - Retrieves the plain-text content from the current raw content.
- AssertLegacyTrait::assertTextHelper in core/
tests/ Drupal/ FunctionalTests/ AssertLegacyTrait.php - Helper for assertText and assertNoText.
- Error::formatBacktrace in core/
lib/ Drupal/ Core/ Utility/ Error.php - Formats a backtrace into a plain-text string.
- FieldCustomTest::testCustomFieldXss in core/
modules/ views/ tests/ src/ Kernel/ Handler/ FieldCustomTest.php - Ensure that custom field content is XSS filtered.
- FieldFilteredMarkup::create in core/
lib/ Drupal/ Core/ Field/ FieldFilteredMarkup.php - Overrides \Drupal\Component\Render\MarkupTrait::create().
- FilterHtml::process in core/
modules/ filter/ src/ Plugin/ Filter/ FilterHtml.php - Performs the filter processing.
- FilterTestRestrictTagsAndAttributes::process in core/
modules/ filter/ tests/ filter_test/ src/ Plugin/ Filter/ FilterTestRestrictTagsAndAttributes.php - Performs the filter processing.
- HandlerBase::sanitizeValue in core/
modules/ views/ src/ Plugin/ views/ HandlerBase.php - Sanitize the value for output.
- hook_node_update_index in core/
modules/ node/ node.api.php - Act on a node being indexed for searching.
- IntegrationTest::testAggregatorItemView in core/
modules/ aggregator/ tests/ src/ Kernel/ Views/ IntegrationTest.php - Tests basic aggregator_item view.
- locale_string_is_safe in core/
modules/ locale/ locale.module - Check that a string is safe to be added or imported as a translation.
- MailFormatHelper::htmlToText in core/
lib/ Drupal/ Core/ Mail/ MailFormatHelper.php - Transforms an HTML string into plain text, preserving its structure.
- Renderer::ensureMarkupIsSafe in core/
lib/ Drupal/ Core/ Render/ Renderer.php - Escapes #plain_text or filters #markup as required.
- Standard::filterXss in core/
modules/ editor/ src/ EditorXssFilter/ Standard.php - Filters HTML to prevent XSS attacks when a user edits it in a text editor.
- ThemeSuggestionsAlterTest::testExecutionOrder in core/
modules/ system/ tests/ src/ Functional/ Theme/ ThemeSuggestionsAlterTest.php - Tests execution order of theme suggestion alter hooks.
- TokenReplaceKernelTest::testSystemDateTokenReplacement in core/
modules/ system/ tests/ src/ Kernel/ Token/ TokenReplaceKernelTest.php - Tests the generation of all system date tokens.
- ViewsSelection::stripAdminAndAnchorTagsFromResults in core/
modules/ views/ src/ Plugin/ EntityReferenceSelection/ ViewsSelection.php - Strips all admin and anchor tags from a result list.
- Xss::filterAdmin in core/
lib/ Drupal/ Component/ Utility/ Xss.php - Applies a very permissive XSS/HTML filter for admin-only use.
- XssTest::testAttribute in core/
tests/ Drupal/ Tests/ Component/ Utility/ XssTest.php - Check that strings in HTML attributes are correctly processed.
- XssTest::testFilterXssNormalized in core/
tests/ Drupal/ Tests/ Component/ Utility/ XssTest.php - Tests limiting allowed tags and XSS prevention.
- XssTest::testFilterXssNotNormalized in core/
tests/ Drupal/ Tests/ Component/ Utility/ XssTest.php - Tests limiting to allowed tags and XSS prevention.
- XssTest::testInvalidMultiByte in core/
tests/ Drupal/ Tests/ Component/ Utility/ XssTest.php - Checks that invalid multi-byte sequences are rejected.
- XssTest::testQuestionSign in core/
tests/ Drupal/ Tests/ Component/ Utility/ XssTest.php - Checks that strings starting with a question sign are correctly processed.