getFullPageHtml() and reading cookies to find session id

• Read $_COOKIE[session_name()] directly to find session id if session is not active (#13)

Previously, only the output from session_id() was sanitized, but session has to be started for the function to return anything. So now the cookie is also read directly, and I'd still recommend you explicitly add the string with something like addSanitization($this0>sessionHandler->getId(), '[***]') which is now mentioned in the README too.

• Add getFullPageHtml() (#14)

getFullPageHtml() doesn't remove HEAD & BODY and preserve inline styles while still sanitizing what it's supposed to be sanitized. The method was added to make using this package easier in a simple pages like the old school /info.php with just <?php phpinfo();

The README now also warns that using getHtml() removes the HEAD element with the meta name="ROBOTS" tag, so you should somehow add it back. That's also why getFullPageHtml() was added.

Sanitizing arbitrary strings

• Can configure the sanitizer as a standalone object to sanitize arbitrary strings too (#12)

Support PHP 7.4-8.3

• Support PHP 7.4 too (#11)

Dark mode, CSS matches PHP 8.3

This release updates phpinfo() CSS to match PHP 8.3, brings dark mode (#10)

Sanitize session id by default

• Sanitize session id by default, to protect against some session hijacking attacks. More strings can be added with addSanitization (#8, #9)

Support PHP 8.3

What's Changed

• Support PHP 8.3 (#7)
• Bump actions/checkout from 3 to 4 (#6) Did you know you can use @dependabot to update your actions, not just your code? I've updated my article which mentions Dependabot https://www.michalspacek.com/dont-let-security-bugs-catch-you-off-guard#github-dependabot

PHP 8.0 required, 8.1 & 8.2 supported

• PHP 8.0+ is now required (#4)
• 8.1 & 8.2 supported (#2 & #5)

PHP 8.0 support

PHP 8.0 is now supported.

No other user-facing changes in this release.