private function _js_removal($match, $search)
{
if (!$match[0]) {
return '';
}
$replacer = preg_replace('#' . $search . '=.*?(?:(?:alert|prompt|confirm)(?:\\((\')*|&\\#40;)|javascript:|view-source:|livescript:|wscript:|vbscript:|mocha:|charset=|window\\.|document\\.|\\.cookie|<script|<xss|base64\\s*,)#si', '', $this->_filter_attributes(str_replace(array('<', '>'), '', $match[1])));
return str_ireplace($match[1], $replacer, $match[0]);
}