HTML Purifier is a new PHP tool which aims to help you clean up your web pages from malicious codes and keep it standards-compliant. I think it’s an extremely useful tool for all PHP projects to help getting their projects Safe and Clean. HTML Purifier is open-source and highly customizable. There are already plugins for CMS such Drupal and MODx, certainly more are coming. From the website :
HTML Purifier is a standards-compliant HTML filter library written in PHP. HTML Purifier will not only remove all malicious code (better known as XSS) with a thoroughly audited, secure yet permissive whitelist, it will also make sure your documents are standards compliant, something only achievable with a comprehensive knowledge of W3C’s specifications.
