Hi, I just merged the XSS API changes for removing the AntiSamy library and using the OWASP Java HTML Sanitizer instead [1], [2]. (Thanks, Tatyana!)
As it's a big change and, even though it's coming with lots of tests, I would like to wait a bit before releasing. I would like to start the release vote in a week from now, on 28.09. Please let me know if you discover any release blockers before. Thanks, Robert [1]: https://issues.apache.org/jira/browse/SLING-7231 [2]: https://github.com/apache/sling-org-apache-sling-xss/pull/28
