Merge pull request #19 from snoop0x7b/filtered-unserialize

rosswintle · web-flow · commit 88b9d9dbf276 · 2022-05-02T20:00:02.000+01:00
diff --git a/features.js b/features.js
@@ -371,6 +371,25 @@ const features = [
       },
     ],
   },
+  {
+    name: "Filtered unserialize()",
+    description:
+      'Filtered unserialize allows developers to specify which classes they expect data to unserialize into. For example: <code>$data = unserialize($foo, ["allowed_classes" => ["MyClass", "MyClass2"]]);</code>. This improves security greatly when using PHP serialization.',
+    keywords: ["unserialize", "security", "serialize"],
+    added: "7.0",
+    deprecated: null,
+    removed: null,
+    resources: [
+      {
+        name: "PHP 7 New features page (php.net)",
+        url: "https://www.php.net/manual/en/migration70.new-features.php#migration70.new-features.filtered-unserialize",
+      },
+      {
+        name: "Unserialize manual page (php.net)",
+        url: "https://www.php.net/manual/en/function.unserialize.php",
+      },
+    ],
+  },
   {
     name: "Splat operator / argument unpacking (... operator)",
     description:
diff --git a/index.html b/index.html
@@ -88,20 +88,22 @@ <h3>Nothing matches!</h3>
             <li>
               We know about the thing, but your search didn't find it - try
               again! If you think search didn't work for a given feature, please
-              raise an issue or PR on <a href="https://github.com/rosswintle/can-i-php">
-              the GitHub repo</a> to improve the keywords.
+              raise an issue or PR on
+              <a href="https://github.com/rosswintle/can-i-php">
+                the GitHub repo</a
+              >
+              to improve the keywords.
             </li>
             <li>
               The feature was not added in, deprecated from or removed from a
-              recent PHP version. caniphp.com is not a list of ALL PHP
-              functions and features, just those added or removed in recent
-              versions.
+              recent PHP version. caniphp.com is not a list of ALL PHP functions
+              and features, just those added or removed in recent versions.
             </li>
             <li>
-                We don't know about the thing yet. The information here is being
-                manually curated, and is not yet complete. So please bear
-                with us as we add more data, or contribute what you were looking
-                for on <a href="https://github.com/rosswintle/can-i-php">GitHub.</a>
+              We don't know about the thing yet. The information here is being
+              manually curated, and is not yet complete. So please bear with us
+              as we add more data, or contribute what you were looking for on
+              <a href="https://github.com/rosswintle/can-i-php">GitHub.</a>
             </li>
           </ul>
           <p>
