inthere/csv-security-formatter
Composer 安装命令:
composer require inthere/csv-security-formatter
包简介
Formatter for thephpleague/csv package to increase security for csv exports with user generated content
README 文档
README
Formatter for league/csv package to increase security for csv exports with user generated content. For more information about the security risks of user generated content in csv exports, please read http://georgemauer.net/2017/10/07/csv-injection.html.
Installation
You can install the package via composer:
composer require inthere/csv-security-formatter
Usage
Start the formatter. The formatter accept a boolean as parameter, provide false when you want to remove the formula
instead of escaping.
$csvSecurityFormatter = new \InThere\CsvSecurityFormatter\CsvSecurityFormatter();
Provide the formula to the writer.
$writer = Writer::createFromFileObject(new SplTempFileObject()); $writer->addFormatter($csvSecurityFormatter); $writer->insertOne(['=2*5', 'foo', 'bar']);
Create the csv.
$writer->__toString();
Tests
$ vendor/bin/phpunit
Contributors
Contributions are welcome. We accept contributions via pull requests on Github.
License
The MIT License (MIT). Please see the License File for more information.
About InThere
InThere - "The training Through Gaming Company" - speeds up training your team and change processes by providing a micro-training concept based on serious games.
inthere/csv-security-formatter 适用场景与选型建议
inthere/csv-security-formatter 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 57 次下载、GitHub Stars 达 0, 最近一次更新时间为 2017 年 10 月 11 日, 在 PHP 生态内属于活跃度较高的组件。
我们在过去多个企业项目中使用过 inthere/csv-security-formatter 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。
基于 inthere/csv-security-formatter 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。
线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。
承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。
统计信息
- 总下载量: 57
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 0
- 点击次数: 10
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: Unknown
- 更新时间: 2017-10-11