|Last Updated|| ||Ratings|| ||Unique User Downloads|| ||Download Rankings|
|2022-05-23 (10 months ago) ||Not enough user ratings||Total: 76 ||All time: 10,012 This week: 161|
Paragon Initiative Enterprises
This package can parse JSON strings immune to hash-DoS attacks.
It can take a string in JSON format to parse it and return a PHP data structure.
The package can parse JSON strings and store the JSON object variables without using regular PHP arrays to make the result immune to hash-DoS attacks.
|A Hash DoS attack is a security attack that may affect PHP applications that use arrays or objects to pass parameters from clients to PHP using HTTP request variables.
This vulnerability may affect PHP versions that do not avoid collisions of hash data structures that may take many keys that result in the same hash value to determine how arrays and objects are stored internally by PHP.
PHP provides better alternative methods to store arrays and objects more immune to this vulnerability.
This package implements a parser for JSON strings that uses an alternative method to store values or JSON objects passed to PHP from HTTP requests like those used to call APIs implemented in PHP.
Iaso is a powerful JSON toolkit for PHP 7+, intended for any organization that
builds or consumes JSON-based APIs.
Iaso was developed by Paragon Initiative Enterprises to
allow projects to build APIs without being vulnerable to
hash-collision denial of service attacks from PHP's JSON functions.
HDoS resistant data structure (`ResultSet`)
Basic JSON parser (returns `ResultSet` objects)
* `Assoc` is a JSON object
* `Ordered` is a JSON array
Contract-enforced JSON parser
* Allows strict types, data limits
* Throws an exception if any violations are found
Simple JSON Parsing
$data = JSON::parse($string);
var_dump($data instanceof ResultSet); /bool(true)/
||Applications that use this package
No pages of applications that use this class were specified.
If you know an application of this package, send a message to the author to add a link here.