protected static function _parseXml($file) { if (Configure::read('Hazard.debug')) { return parent::_parseXml($file); } // Simulate the most important ones from the xml file to avoid API requests in CI testing $array = [['code' => '\'\';!--"<XSS>=&{()}'], ['code' => '<SCRIPT>alert(\'XSS\')</SCRIPT>'], ['code' => '<STYLE>.XSS{background-image:url("javascript:alert(\'XSS\')");}</STYLE><A CLASS=XSS></A>']]; return $array; }