On Thu, Apr 17, 2014 at 8:30 AM, Ken Kahn <[email protected]> wrote: > Using the JavaScript sanitizer (html-sanitizer-minified.js)
The sanitizer is a tiny part of Caja. All it does is strip executable content out of HTML. The rest of Caja is for making it possible to run javascript but *confine* it so that it can't do stuff that you don't want it to, like draw outside its div or communicate with any website but your own, etc. -- Mike Stay - [email protected] http://www.cs.auckland.ac.nz/~mike http://reperiendi.wordpress.com -- --- You received this message because you are subscribed to the Google Groups "Google Caja Discuss" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
