HTML Purifier 2.0
Edward Z. Yang released HTML Purifier 2.0 last week. HTML Purifier is a standards-compliant HTML filter written in PHP. It uses whitelists and a comprehensive knowledge of the HTML specification to output stanards compliant code while also filtering out malicious JavaScript and Cross-site Scripting injections (XSS). In fact, instead of just removing malformed input (like missing HTML end tags), it fixes it! It even validates your CSS and converts deprecated tags.
Geez, maybe version 3.0 will do my laundry too…
[Hat tip to Pádraic Brady for the original link.]
