fa45d8aa5f
- health_checklist.json: 192.168.1.122→node122
- ocr_client.py: docstring IP→node122
- docs/market-data-requirements.md: IP→node122
- 所有API调用通过ProxyHandler({})绕过系统代理
Privoxy对node122:18003返回500,直连正常
51 lines
2.3 KiB
Plaintext
51 lines
2.3 KiB
Plaintext
Metadata-Version: 2.4
|
|
Name: lxml_html_clean
|
|
Version: 0.4.5
|
|
Summary: HTML cleaner from lxml project
|
|
Home-page: https://github.com/fedora-python/lxml_html_clean/
|
|
Author: Lumír Balhar
|
|
Author-email: lbalhar@redhat.com
|
|
License: BSD-3-Clause
|
|
Project-URL: Documentation, https://lxml-html-clean.readthedocs.io/
|
|
Classifier: Programming Language :: Python :: 3
|
|
Classifier: Programming Language :: Python :: 3.8
|
|
Classifier: Programming Language :: Python :: 3.9
|
|
Classifier: Programming Language :: Python :: 3.10
|
|
Classifier: Programming Language :: Python :: 3.11
|
|
Classifier: Programming Language :: Python :: 3.12
|
|
Classifier: Programming Language :: Python :: 3.13
|
|
Classifier: Programming Language :: Python :: 3.14
|
|
Description-Content-Type: text/markdown
|
|
License-File: LICENSE.txt
|
|
Requires-Dist: lxml>=6.1.1
|
|
Dynamic: license-file
|
|
|
|
# lxml_html_clean
|
|
|
|
## Motivation
|
|
|
|
This project was initially a part of [lxml](https://github.com/lxml/lxml). Because HTML cleaner is designed as blocklist-based, many reports about possible security vulnerabilities were filed for lxml and that make the project problematic for security-sensitive environments. Therefore we decided to extract the problematic part to a separate project.
|
|
|
|
**Important**: the HTML Cleaner in ``lxml_html_clean`` is **not** considered appropriate **for security sensitive environments**. See e.g. [nh3](https://pypi.org/project/nh3/) for an alternative.
|
|
|
|
This project uses functions from Python's `urllib.parse` for URL parsing which **do not validate inputs**. For more information on potential security risks, refer to the [URL parsing security](https://docs.python.org/3/library/urllib.parse.html#url-parsing-security) documentation. A maliciously crafted URL could potentially bypass the allowed hosts check in `Cleaner`.
|
|
|
|
## Installation
|
|
|
|
You can install this project directly via `pip install lxml_html_clean` or as an extra of lxml
|
|
via `pip install lxml[html_clean]`. Both ways install this project together with lxml itself.
|
|
|
|
## Security
|
|
|
|
For discussions regarding security-related issues or any sensitive reports, please contact us privately.
|
|
You can reach out to lbalhar(at)redhat.com or frenzy.madness(at)gmail.com to ensure your concerns
|
|
are addressed confidentially and securely.
|
|
|
|
## Documentation
|
|
|
|
[https://lxml-html-clean.readthedocs.io/](https://lxml-html-clean.readthedocs.io/)
|
|
|
|
## License
|
|
|
|
BSD-3-Clause
|