actiontext 7.0.8.3 → 7.0.8.5

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 634986903c9722dea521e48d1aeb929928c7852fd376d0628f2934023234f53e
4
- data.tar.gz: 62ac139bf11a8d8aae30c45cbc4267ca7da41f1b83e31fdbc6c3a8ed91493924
3
+ metadata.gz: 3c35eba894b3d8172d3b14eef43f8ac4e51bf707622dede47a72f8211a9ab1c2
4
+ data.tar.gz: d81b81fd8dcc3f27ccc58037e6ac5868a4e44ee586a12387edfee4dc9e5f5678
5
5
  SHA512:
6
- metadata.gz: 29ac5bc9d01a692735f70c972f6309e1094198b397c5c57036d1dae1cc4b9ac245028209154e5ab733c22ec49d661470d66a9924e431608d83c858d50ef9c89a
7
- data.tar.gz: 48fd94f1aa49dcd5f4d1b58d3a4e6f95ca175c9f490f465a7a1e8c499b10ac488f2290facca2e940d2f9c02909217ee6d99808c9819599cfd3b0f28f807dac77
6
+ metadata.gz: cc4d359627fea1e3c4a3b8d4db08f6e31de75bc9f267a65484866385de3dde62c967dbe089e1a36858b98467ed07e2395d46f2b2f464f6a8987c2c60899c19fd
7
+ data.tar.gz: 3d0a5a617843d31b6592ce60ad51a672422e2a274cb8219fd5f5043eff101ea09a217d3c5ed1242bd4cdeaa3f0e5b2dae3b1d1f0ad6c1b16a194ae777ae4eaac
data/CHANGELOG.md CHANGED
@@ -1,3 +1,15 @@
1
+ ## Rails 7.0.8.5 (October 15, 2024) ##
2
+
3
+ * Avoid backtracing in plain_text_for_blockquote_node
4
+
5
+ [CVE-2024-47888]
6
+
7
+
8
+ ## Rails 7.0.8.4 (June 04, 2024) ##
9
+
10
+ * No changes.
11
+
12
+
1
13
  ## Rails 7.0.8.3 (May 17, 2024) ##
2
14
 
3
15
  * Fix vendored trix.css to be correct file.
@@ -10,7 +10,7 @@ module ActionText
10
10
  MAJOR = 7
11
11
  MINOR = 0
12
12
  TINY = 8
13
- PRE = "3"
13
+ PRE = "5"
14
14
 
15
15
  STRING = [MAJOR, MINOR, TINY, PRE].compact.join(".")
16
16
  end
@@ -63,7 +63,12 @@ module ActionText
63
63
 
64
64
  def plain_text_for_blockquote_node(node, index)
65
65
  text = plain_text_for_block(node)
66
- text.sub(/\A(\s*)(.+?)(\s*)\Z/m, '\1“\2”\3')
66
+ return "“”" if text.blank?
67
+
68
+ text = text.dup
69
+ text.insert(text.rindex(/\S/) + 1, "”")
70
+ text.insert(text.index(/\S/), "“")
71
+ text
67
72
  end
68
73
 
69
74
  def plain_text_for_li_node(node, index)
data/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@rails/actiontext",
3
- "version": "7.0.8-3",
3
+ "version": "7.0.805",
4
4
  "description": "Edit and display rich text in Rails applications",
5
5
  "main": "app/assets/javascripts/actiontext.js",
6
6
  "type": "module",
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: actiontext
3
3
  version: !ruby/object:Gem::Version
4
- version: 7.0.8.3
4
+ version: 7.0.8.5
5
5
  platform: ruby
6
6
  authors:
7
7
  - Javan Makhmali
@@ -10,7 +10,7 @@ authors:
10
10
  autorequire:
11
11
  bindir: bin
12
12
  cert_chain: []
13
- date: 2024-05-17 00:00:00.000000000 Z
13
+ date: 2024-10-15 00:00:00.000000000 Z
14
14
  dependencies:
15
15
  - !ruby/object:Gem::Dependency
16
16
  name: activesupport
@@ -18,56 +18,56 @@ dependencies:
18
18
  requirements:
19
19
  - - '='
20
20
  - !ruby/object:Gem::Version
21
- version: 7.0.8.3
21
+ version: 7.0.8.5
22
22
  type: :runtime
23
23
  prerelease: false
24
24
  version_requirements: !ruby/object:Gem::Requirement
25
25
  requirements:
26
26
  - - '='
27
27
  - !ruby/object:Gem::Version
28
- version: 7.0.8.3
28
+ version: 7.0.8.5
29
29
  - !ruby/object:Gem::Dependency
30
30
  name: activerecord
31
31
  requirement: !ruby/object:Gem::Requirement
32
32
  requirements:
33
33
  - - '='
34
34
  - !ruby/object:Gem::Version
35
- version: 7.0.8.3
35
+ version: 7.0.8.5
36
36
  type: :runtime
37
37
  prerelease: false
38
38
  version_requirements: !ruby/object:Gem::Requirement
39
39
  requirements:
40
40
  - - '='
41
41
  - !ruby/object:Gem::Version
42
- version: 7.0.8.3
42
+ version: 7.0.8.5
43
43
  - !ruby/object:Gem::Dependency
44
44
  name: activestorage
45
45
  requirement: !ruby/object:Gem::Requirement
46
46
  requirements:
47
47
  - - '='
48
48
  - !ruby/object:Gem::Version
49
- version: 7.0.8.3
49
+ version: 7.0.8.5
50
50
  type: :runtime
51
51
  prerelease: false
52
52
  version_requirements: !ruby/object:Gem::Requirement
53
53
  requirements:
54
54
  - - '='
55
55
  - !ruby/object:Gem::Version
56
- version: 7.0.8.3
56
+ version: 7.0.8.5
57
57
  - !ruby/object:Gem::Dependency
58
58
  name: actionpack
59
59
  requirement: !ruby/object:Gem::Requirement
60
60
  requirements:
61
61
  - - '='
62
62
  - !ruby/object:Gem::Version
63
- version: 7.0.8.3
63
+ version: 7.0.8.5
64
64
  type: :runtime
65
65
  prerelease: false
66
66
  version_requirements: !ruby/object:Gem::Requirement
67
67
  requirements:
68
68
  - - '='
69
69
  - !ruby/object:Gem::Version
70
- version: 7.0.8.3
70
+ version: 7.0.8.5
71
71
  - !ruby/object:Gem::Dependency
72
72
  name: nokogiri
73
73
  requirement: !ruby/object:Gem::Requirement
@@ -160,10 +160,10 @@ licenses:
160
160
  - MIT
161
161
  metadata:
162
162
  bug_tracker_uri: https://github.com/rails/rails/issues
163
- changelog_uri: https://github.com/rails/rails/blob/v7.0.8.3/actiontext/CHANGELOG.md
164
- documentation_uri: https://api.rubyonrails.org/v7.0.8.3/
163
+ changelog_uri: https://github.com/rails/rails/blob/v7.0.8.5/actiontext/CHANGELOG.md
164
+ documentation_uri: https://api.rubyonrails.org/v7.0.8.5/
165
165
  mailing_list_uri: https://discuss.rubyonrails.org/c/rubyonrails-talk
166
- source_code_uri: https://github.com/rails/rails/tree/v7.0.8.3/actiontext
166
+ source_code_uri: https://github.com/rails/rails/tree/v7.0.8.5/actiontext
167
167
  rubygems_mfa_required: 'true'
168
168
  post_install_message:
169
169
  rdoc_options: []
@@ -180,7 +180,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
180
180
  - !ruby/object:Gem::Version
181
181
  version: '0'
182
182
  requirements: []
183
- rubygems_version: 3.5.10
183
+ rubygems_version: 3.5.16
184
184
  signing_key:
185
185
  specification_version: 4
186
186
  summary: Rich text framework.