diff --git a/modules/developer/tests/xss_data.txt b/modules/developer/tests/xss_data.txt
new file mode 100644
index 00000000..48700680
--- /dev/null
+++ b/modules/developer/tests/xss_data.txt
@@ -0,0 +1,75 @@
+modules/developer/views/admin_controller.txt.php             2   DIRTY    "<?php defined(\"SYSPATH\") or die(\"No direct script access.\");"
+modules/developer/views/admin_controller.txt.php             21  DIRTY    $class_name
+modules/developer/views/admin_controller.txt.php             33  DIRTY    $name
+modules/developer/views/admin_controller.txt.php             35  DIRTY    $module
+modules/developer/views/admin_controller.txt.php             43  DIRTY    $module
+modules/developer/views/admin_controller.txt.php             49  DIRTY    $module
+modules/developer/views/admin_developer.html.php             2   DIRTY    html::script("modules/developer/js/developer.js")
+modules/developer/views/admin_developer.html.php             9   DIRTY    $title
+modules/developer/views/admin_developer.html.php             11  DIRTY    $developer_content
+modules/developer/views/admin_developer_test_data.html.php   22  DIRTY    form::open($action,array("method"=>"post","id"=>"g-generate-test-data"),$hidden)
+modules/developer/views/admin_developer_test_data.html.php   26  DIRTY    $album_count
+modules/developer/views/admin_developer_test_data.html.php   26  DIRTY    $photo_count
+modules/developer/views/admin_developer_test_data.html.php   26  DIRTY    $comment_count
+modules/developer/views/admin_developer_test_data.html.php   26  DIRTY    $tag_count
+modules/developer/views/admin_developer_test_data.html.php   35  DIRTY    form::checkbox(array("id"=>"g-generate-albums","name"=>"generate_albums","class"=>"g-generate-checkbox","style"=>"display:inline","checked"=>!empty($form["generate_albums"])),".g-radio-album")
+modules/developer/views/admin_developer_test_data.html.php   37  DIRTY    form::label("album_$number","$number")
+modules/developer/views/admin_developer_test_data.html.php   38  DIRTY    form::radio(array("id"=>"album_$number","name"=>"albums","style"=>"display:inline","checked"=>$number==10,"disabled"=>true,"class"=>"g-radio-album"),$number)
+modules/developer/views/admin_developer_test_data.html.php   48  DIRTY    form::checkbox(array("id"=>"g-generate-photos","name"=>"generate_photos","class"=>"g-generate-checkbox","style"=>"display:inline","checked"=>!empty($form["generate_photos"])),".g-radio-photo")
+modules/developer/views/admin_developer_test_data.html.php   50  DIRTY    form::label("photo_$number","$number")
+modules/developer/views/admin_developer_test_data.html.php   51  DIRTY    form::radio(array("id"=>"photo_$number","name"=>"photos","style"=>"display:inline","checked"=>$number==10,"disabled"=>true,"class"=>"g-radio-photo"),$number)
+modules/developer/views/admin_developer_test_data.html.php   62  DIRTY    form::checkbox(array("id"=>"g-generate-comments","name"=>"generate_comments","class"=>"g-generate-checkbox","style"=>"display:inline","checked"=>!empty($form["generate_comments"])),".g-radio-comment")
+modules/developer/views/admin_developer_test_data.html.php   64  DIRTY    form::label("comment_$number","$number")
+modules/developer/views/admin_developer_test_data.html.php   65  DIRTY    form::radio(array("id"=>"comment_$number","name"=>"comments","style"=>"display:inline","checked"=>$number==10,"disabled"=>true,"class"=>"g-radio-comment"),$number)
+modules/developer/views/admin_developer_test_data.html.php   77  DIRTY    form::checkbox(array("id"=>"g-generate-tags","name"=>"generate_tags","class"=>"g-generate-checkbox","style"=>"display:inline","checked"=>!empty($form["generate_tags"])),".g-radio-tag")
+modules/developer/views/admin_developer_test_data.html.php   79  DIRTY    form::label("tag_$number","$number")
+modules/developer/views/admin_developer_test_data.html.php   80  DIRTY    form::radio(array("id"=>"tag_$number","name"=>"tags","style"=>"display:inline","checked"=>$number==10,"disabled"=>true,"class"=>"g-radio-tag"),$number)
+modules/developer/views/admin_html.txt.php                   2   DIRTY    "<?php defined(\"SYSPATH\") or die(\"No direct script access.\") ?>"
+modules/developer/views/admin_html.txt.php                   4   DIRTY_ATTR $css_id
+modules/developer/views/admin_html.txt.php                   6   DIRTY    "<?= t(\"$name Adminstration\") ?>"
+modules/developer/views/admin_html.txt.php                   8   DIRTY    "<?= \$form ?>"
+modules/developer/views/block.txt.php                        2   DIRTY    "<?php defined(\"SYSPATH\") or die(\"No direct script access.\");"
+modules/developer/views/block.txt.php                        22  DIRTY    $module
+modules/developer/views/block.txt.php                        25  DIRTY    "{$module}_site"
+modules/developer/views/block.txt.php                        25  DIRTY    $name
+modules/developer/views/block.txt.php                        30  DIRTY    "{$module}_admin"
+modules/developer/views/block.txt.php                        30  DIRTY    $name
+modules/developer/views/block.txt.php                        36  DIRTY    "{$module}_admin"
+modules/developer/views/block.txt.php                        37  DIRTY    $css_id
+modules/developer/views/block.txt.php                        38  DIRTY    $module
+modules/developer/views/block.txt.php                        39  DIRTY    $module
+modules/developer/views/block.txt.php                        43  DIRTY    "{$module}_site"
+modules/developer/views/block.txt.php                        44  DIRTY    $css_id
+modules/developer/views/block.txt.php                        45  DIRTY    $module
+modules/developer/views/block.txt.php                        46  DIRTY    $module
+modules/developer/views/block_html.txt.php                   2   DIRTY    "<?php defined(\"SYSPATH\") or die(\"No direct script access.\") ?>"
+modules/developer/views/block_html.txt.php                   4   DIRTY_ATTR $css_id
+modules/developer/views/block_html.txt.php                   5   DIRTY    "<a href=\"<?= \$item->url() ?>\">"
+modules/developer/views/block_html.txt.php                   7   DIRTY    "<?= \$item->thumb_tag(array(\"class\" => \"g-thumbnail\")) ?>"
+modules/developer/views/controller.txt.php                   2   DIRTY    "<?php defined(\"SYSPATH\") or die(\"No direct script access.\");"
+modules/developer/views/controller.txt.php                   21  DIRTY    $class_name
+modules/developer/views/controller.txt.php                   33  DIRTY    $name
+modules/developer/views/controller.txt.php                   45  DIRTY    $module
+modules/developer/views/controller.txt.php                   46  DIRTY    $css_id
+modules/developer/views/controller.txt.php                   47  DIRTY    $name
+modules/developer/views/developer_module.html.php            3   DIRTY    form::open($action,array("method"=>"post"),$hidden)
+modules/developer/views/developer_module.html.php            8   DIRTY    form::input("name",$form["name"])
+modules/developer/views/developer_module.html.php            18  DIRTY    form::input("display_name",$form["display_name"])
+modules/developer/views/developer_module.html.php            25  DIRTY    form::input("description",$form["description"])
+modules/developer/views/developer_module.html.php            34  DIRTY    form::dropdown(array("name"=>"theme[]","multiple"=>true,"size"=>6),$theme,$form["theme[]"])
+modules/developer/views/developer_module.html.php            38  DIRTY    form::dropdown(array("name"=>"event[]","multiple"=>true,"size"=>6),$event,$form["event[]"])
+modules/developer/views/developer_module.html.php            47  DIRTY    form::close()
+modules/developer/views/event.txt.php                        2   DIRTY    "<?php defined(\"SYSPATH\") or die(\"No direct script access.\");"
+modules/developer/views/event.txt.php                        21  DIRTY    $module
+modules/developer/views/installer.txt.php                    2   DIRTY    "<?php defined(\"SYSPATH\") or die(\"No direct script access.\");"
+modules/developer/views/installer.txt.php                    21  DIRTY    $module
+modules/developer/views/installer.txt.php                    23  DIRTY    $module
+modules/developer/views/installer.txt.php                    26  DIRTY    $module
+modules/developer/views/installer.txt.php                    35  DIRTY    $module
+modules/developer/views/module_info.txt.php                  2   DIRTY    $module_name
+modules/developer/views/module_info.txt.php                  4   DIRTY_ATTR $module_description
+modules/developer/views/mptt_tree.html.php                   8   DIRTY    $tree
+modules/developer/views/mptt_tree.html.php                   10  DIRTY_ATTR $url
+modules/developer/views/mptt_tree.html.php                   11  DIRTY    $tree
+modules/developer/views/theme.txt.php                        2   DIRTY    "<?php defined(\"SYSPATH\") or die(\"No direct script access.\");"
+modules/developer/views/theme.txt.php                        21  DIRTY    $module
diff --git a/modules/register/tests/xss_data.txt b/modules/register/tests/xss_data.txt
new file mode 100644
index 00000000..7ef1cf1a
--- /dev/null
+++ b/modules/register/tests/xss_data.txt
@@ -0,0 +1,16 @@
+modules/register/views/admin_register.html.php               16  DIRTY    form::open($action,array("method"=>"post"),$hidden)
+modules/register/views/admin_register.html.php               17  DIRTY    form::open_fieldset()
+modules/register/views/admin_register.html.php               22  DIRTY    form::radio("policy",$policy,$policy==$form["policy"])
+modules/register/views/admin_register.html.php               23  DIRTY    form::label("policy",$text)
+modules/register/views/admin_register.html.php               27  DIRTY    form::checkbox("email_verification","true",!empty($form["email_verification"]),$disable_email)
+modules/register/views/admin_register.html.php               33  DIRTY    form::dropdown(array("name"=>"group"),$group_list,$form["group"])
+modules/register/views/admin_register.html.php               40  DIRTY    form::close_fieldset()
+modules/register/views/admin_register.html.php               41  DIRTY    form::close()
+modules/register/views/admin_register.html.php               45  DIRTY    form::open($activate,array("method"=>"post"),$hidden)
+modules/register/views/admin_register.html.php               46  DIRTY    form::open_fieldset()
+modules/register/views/admin_register.html.php               61  DIRTY_ATTR text::alternate("g-odd","g-even")
+modules/register/views/admin_register.html.php               64  DIRTY    form::checkbox("activate[]",$user->id)
+modules/register/views/admin_register.html.php               69  DIRTY    register::format_registration_state($user->state)
+modules/register/views/admin_register.html.php               72  DIRTY_ATTR t($user->email)
+modules/register/views/admin_register.html.php               78  DIRTY    form::close_fieldset()
+modules/register/views/admin_register.html.php               79  DIRTY    form::close()
diff --git a/modules/tag_cloud/tests/xss_data.txt b/modules/tag_cloud/tests/xss_data.txt
new file mode 100644
index 00000000..c2fc881d
--- /dev/null
+++ b/modules/tag_cloud/tests/xss_data.txt
@@ -0,0 +1,6 @@
+modules/tag_cloud/views/admin_tag_cloud.html.php             6   DIRTY    $form
+modules/tag_cloud/views/tag_cloud_block.html.php             5   DIRTY_JS url::file("modules/tag_cloud/lib/tagcloud.swf")
+modules/tag_cloud/views/tag_cloud_block.html.php             7   DIRTY_JS $option
+modules/tag_cloud/views/tag_cloud_block.html.php             7   DIRTY_JS $value
+modules/tag_cloud/views/tag_cloud_block.html.php             14  DIRTY    $cloud
+modules/tag_cloud/views/tag_cloud_block.html.php             17  DIRTY    $form