public function Security::unsafeTags in Security Review 8
Gets the list of unsafe HTML tags.
Return value
string[] List of unsafe tags.
File
- src/
Security.php, line 238
Class
- Security
- Provides frequently used security-related data.
Namespace
Drupal\security_reviewCode
public function unsafeTags() {
$unsafe_tags = [
'applet',
'area',
'audio',
'base',
'basefont',
'body',
'button',
'comment',
'embed',
'eval',
'form',
'frame',
'frameset',
'head',
'html',
'iframe',
'image',
'img',
'input',
'isindex',
'label',
'link',
'map',
'math',
'meta',
'noframes',
'noscript',
'object',
'optgroup',
'option',
'param',
'script',
'select',
'style',
'svg',
'table',
'td',
'textarea',
'title',
'video',
'vmlframe',
];
// Alter data.
$this->moduleHandler
->alter('security_review_unsafe_tags', $unsafe_tags);
return $unsafe_tags;
}