diff options
| -rw-r--r-- | includes/bootstrap.inc | 3 | ||||
| -rw-r--r-- | includes/common.inc | 3 | ||||
| -rw-r--r-- | includes/install.inc | 1 | ||||
| -rw-r--r-- | modules/filter/filter.module | 2 |
4 files changed, 9 insertions, 0 deletions
diff --git a/includes/bootstrap.inc b/includes/bootstrap.inc index f15cbd95e..f1d103329 100644 --- a/includes/bootstrap.inc +++ b/includes/bootstrap.inc @@ -1380,6 +1380,8 @@ function drupal_unpack($obj, $field = 'data') { * belongs to. * @return * The translated string. + * + * @ingroup sanitization */ function t($string, array $args = array(), array $options = array()) { global $language; @@ -1448,6 +1450,7 @@ function t($string, array $args = array(), array $options = array()) { * valid UTF-8. * * @see drupal_validate_utf8() + * @ingroup sanitization */ function check_plain($text) { // We do not want to use drupal_static() since PHP version will never change diff --git a/includes/common.inc b/includes/common.inc index ee71ee0b2..e88361cf5 100644 --- a/includes/common.inc +++ b/includes/common.inc @@ -1181,6 +1181,9 @@ function flood_is_allowed($name, $threshold, $window = 3600, $identifier = NULL) * @defgroup sanitization Sanitization functions * @{ * Functions to sanitize values. + * + * See http://drupal.org/writing-secure-code for information + * on writing secure code. */ /** diff --git a/includes/install.inc b/includes/install.inc index c134e676a..11b1a35c2 100644 --- a/includes/install.inc +++ b/includes/install.inc @@ -847,6 +847,7 @@ function install_goto($path) { * system is possibly not yet available. * * @see t() + * @ingroup sanitization */ function st($string, $args = array()) { static $locale_strings = NULL; diff --git a/modules/filter/filter.module b/modules/filter/filter.module index 29be14894..b83aac959 100644 --- a/modules/filter/filter.module +++ b/modules/filter/filter.module @@ -668,6 +668,8 @@ function filter_list_format($format_id) { * Boolean whether to cache the filtered output in the {cache_filter} table. * The caller may set this to FALSE when the output is already cached * elsewhere to avoid duplicate cache lookups and storage. + * + * @ingroup sanitization */ function check_markup($text, $format_id = NULL, $langcode = '', $cache = FALSE) { if (empty($format_id)) { |