PHPackages                             spatelsofmen/xssinput - PHPackages - PHPackages  [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register)

1. [Directory](/)
2. /
3. [Security](/categories/security)
4. /
5. spatelsofmen/xssinput

ActiveLibrary[Security](/categories/security)

spatelsofmen/xssinput
=====================

A simple extension of the Laravel Input facade that mimics CodeIgniter's xss filtering

v2.0(10y ago)0102MITPHPPHP &gt;=5.3.0

Since Dec 12Pushed 10y ago1 watchersCompare

[ Source](https://github.com/spatelsofmen/XssInput)[ Packagist](https://packagist.org/packages/spatelsofmen/xssinput)[ RSS](/packages/spatelsofmen-xssinput/feed)WikiDiscussions master Synced today

READMEChangelog (1)Dependencies (2)Versions (3)Used By (0)

XssInput for Laravel
====================

[](#xssinput-for-laravel)

XssInput is a screamingly simple extension of Laravel's Input facade that somewhat mimics the XSS filtering of CodeIgniter's input library. In fact, underneath the hood, this package uses an altered form of CodeIgniter's Security library to filter inputs for XSS.

XSS filtering happens in one of two ways: by setting the `xss_filter_all_inputs` option in this package's config to `true`, or by passing true as the third option to `Input::get()` or as the only option for `Input::all()`.

- **Author:** Jan Hartigan
- **Website:**
- **Version:** 1.0.0

Composer
--------

[](#composer)

To install XssInput as a Composer package to be used with Laravel 4, simply add this to your composer.json:

```
"frozennode/xssinput": "dev-master"
```

..and run `composer update`. Once it's installed, you can register the service provider in `app/config/app.php` in the `providers` array:

```
'providers' => array(
    'Frozennode\XssInput\XssInputServiceProvider',
)
```

..and change the `Input` alias to point to the facade for XssInput:

```
'aliases' => array(
	'Input' => 'Frozennode\XssInput\XssInput'
)
```

You could also, instead of doing this, give the XssInput facade a separate alias.

Then publish the config file with `php artisan config:publish frozennode/xssinput`. This will add the file `app/config/packages/frozennode/xssinput/xssinput.php`, which you should look at and understand because it's one option long.

Usage
-----

[](#usage)

It really is screamingly simple. If you've set the global xss filtering to `true`, then you can continue using the Input facade as you normally would:

```
Input::get('some_var');
```

The same goes for getting all inputs:

```
Input::all();
```

However, if you don't have global xss filtering on, you can pass in a third parameter to the `get()` method:

```
Input::get('some_var', null, true);
```

Or pass in `true` to the `all()` method:

```
Input::all(true);
```

If you have global filtering on, you can pass `false` in as these parameters to turn off filtering for that particular call to either method.

###  Health Score

27

—

LowBetter than 47% of packages

Maintenance20

Infrequent updates — may be unmaintained

Popularity9

Limited adoption so far

Community10

Small or concentrated contributor base

Maturity59

Maturing project, gaining track record

 Bus Factor1

Top contributor holds 77.8% of commits — single point of failure

How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window.

**Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores.

**Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement.

**Maturity (30%)** — Project age, version count, PHP version support, and release stability.

###  Release Activity

Cadence

Every ~233 days

Total

2

Last Release

3987d ago

Major Versions

1.1.0.x-dev → v2.02015-08-03

### Community

Maintainers

![](https://avatars.githubusercontent.com/u/8810296?v=4)[Sandeep Patel](/maintainers/yash3492)[@yash3492](https://github.com/yash3492)

---

Top Contributors

[![janhartigan](https://avatars.githubusercontent.com/u/580052?v=4)](https://github.com/janhartigan "janhartigan (7 commits)")[![fireproofsocks](https://avatars.githubusercontent.com/u/303735?v=4)](https://github.com/fireproofsocks "fireproofsocks (1 commits)")[![spatelsofmen](https://avatars.githubusercontent.com/u/8810359?v=4)](https://github.com/spatelsofmen "spatelsofmen (1 commits)")

---

Tags

laravelxss

### Embed Badge

![Health badge](/badges/spatelsofmen-xssinput/health.svg)

```
[![Health](https://phpackages.com/badges/spatelsofmen-xssinput/health.svg)](https://phpackages.com/packages/spatelsofmen-xssinput)
```

###  Alternatives

[spatie/laravel-csp

Add CSP headers to the responses of a Laravel app

86611.1M25](/packages/spatie-laravel-csp)[psalm/plugin-laravel

Psalm plugin for Laravel

3355.3M346](/packages/psalm-plugin-laravel)[laravel-chronicle/core

Tamper-evident audit ledger for Laravel applications.

1213.1k3](/packages/laravel-chronicle-core)[frozennode/xssinput

A simple extension of the Laravel Input facade that mimics CodeIgniter's xss filtering

3968.8k](/packages/frozennode-xssinput)[ublabs/blade-simple-icons

A package to easily make use of Simple Icons in your Laravel Blade views.

1963.4k](/packages/ublabs-blade-simple-icons)

PHPackages © 2026

[Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)
