HTML Purifier is a standards-compliant HTML filter library written in PHP. HTML Purifier will not only remove all malicious code (better known as XSS) with a thoroughly audited, secure yet permissive whitelist, it will also make sure your documents are standards compliant, something only achievable with a comprehensive knowledge of W3C’s specifications.

HTML Purifier allows for developers to accept HTML and output it on their web sites without the worry of cross-site scripting attacks. Not only that, but it also outputs standards compliant xhtml. This is a major innovation, considering it will allow developers to create wysiwig editors for their clients and still have websites that validate. 

More to come on this soon, but for now, check out the html purifier website and the demo page. Also if you like this library and would like to help promote it, you can vote for it at DZone, Reddit, Digg and/or del.icio.us. You may also sport this sexy HTML Purifier icon on your website!

<a href="http://htmlpurifier.org/"><img
src="http://htmlpurifier.org/live/art/powered.png"
alt="Powered by HTML Purifier" border="0" /></a>

Zend, the company behind the insanely popular PHP scripting language has announced a new podcast specifically for PHP developers. It’s called “PHP Abstract” and so far, it’s provided some pretty useful tips. The episodes I’ve heard so far definitely seem to be geared towards security and good practices for PHP newcomers or those who are not particularly up to speed on PHP security issues. To quote Cal Evans at devzone.zend.com,

We will be covering a broad range of topics. From security to project planning and hiring good developers and much more.

(more…)

The Q got a makeover during the weekend! We felt that the old layout for our blog didn’t match our brand very well. Also, for such a large layout, it still managed to feel crowded and unorganized. We feel that this one is much better.

If you notice any issues such as images not showing up, or navigation items not in the right place, please let us know about it so that we can fix it! Any other comments/suggestions are welcome as well!