actiontext 7.0.8 → 7.1.3.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of actiontext might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/CHANGELOG.md +58 -94
- data/MIT-LICENSE +1 -1
- data/README.md +2 -2
- data/app/assets/javascripts/actiontext.esm.js +889 -0
- data/app/assets/javascripts/actiontext.js +55 -73
- data/app/assets/javascripts/trix.js +12055 -5168
- data/app/assets/stylesheets/trix.css +67 -30
- data/app/helpers/action_text/content_helper.rb +26 -4
- data/app/helpers/action_text/tag_helper.rb +11 -7
- data/app/models/action_text/encrypted_rich_text.rb +2 -0
- data/app/models/action_text/rich_text.rb +29 -1
- data/app/views/action_text/attachables/_content_attachment.html.erb +3 -0
- data/lib/action_text/attachable.rb +69 -5
- data/lib/action_text/attachables/content_attachment.rb +20 -18
- data/lib/action_text/attachables/missing_attachable.rb +17 -3
- data/lib/action_text/attachment.rb +43 -2
- data/lib/action_text/attribute.rb +10 -5
- data/lib/action_text/content.rb +45 -3
- data/lib/action_text/deprecator.rb +7 -0
- data/lib/action_text/engine.rb +15 -9
- data/lib/action_text/fixture_set.rb +2 -0
- data/lib/action_text/fragment.rb +4 -3
- data/lib/action_text/gem_version.rb +4 -4
- data/lib/action_text/html_conversion.rb +1 -1
- data/lib/action_text/rendering.rb +5 -2
- data/lib/action_text/trix_attachment.rb +2 -2
- data/lib/action_text/version.rb +1 -1
- data/lib/action_text.rb +19 -0
- data/lib/generators/action_text/install/install_generator.rb +21 -4
- data/lib/generators/action_text/install/templates/actiontext.css +0 -4
- data/package.json +7 -7
- metadata +17 -14
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d51a41ff03b550ac428a52ce89ee785539d2ac0b386c5597f4c06b763070d054
|
|
4
|
+
data.tar.gz: 85028cdc38e4448c321e17190924c602f7bd940588307ef42206c7e0842ba31a
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 417dec3ad3e197b566e52b5b42356481d6a5f54e1a792b5f16c7eeaa45137b2a4bdeeb32e83fd890d884fc60864e7d6062ebe25115710a40de06df3c93812c95
|
|
7
|
+
data.tar.gz: ab1691bf97b79a8f2b644b6bf324c06fc663fd8ca2ba4641a906fcf7062a4c4acb4103b25b405561fc21e81198ce7b7541a9d02921d137ae14de6eb75d01b1c7
|
data/CHANGELOG.md
CHANGED
|
@@ -1,161 +1,125 @@
|
|
|
1
|
-
## Rails 7.
|
|
1
|
+
## Rails 7.1.3.4 (June 04, 2024) ##
|
|
2
2
|
|
|
3
|
-
*
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
## Rails 7.0.7.2 (August 22, 2023) ##
|
|
7
|
-
|
|
8
|
-
* No changes.
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
## Rails 7.0.7.1 (August 22, 2023) ##
|
|
12
|
-
|
|
13
|
-
* No changes.
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
## Rails 7.0.7 (August 09, 2023) ##
|
|
17
|
-
|
|
18
|
-
* No changes.
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
## Rails 7.0.6 (June 29, 2023) ##
|
|
22
|
-
|
|
23
|
-
* No changes.
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
## Rails 7.0.5.1 (June 26, 2023) ##
|
|
27
|
-
|
|
28
|
-
* No changes.
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
## Rails 7.0.5 (May 24, 2023) ##
|
|
3
|
+
* Sanitize ActionText HTML ContentAttachment in Trix edit view
|
|
4
|
+
[CVE-2024-32464]
|
|
32
5
|
|
|
33
|
-
* Fix `ActionText::Attachable#as_json`.
|
|
34
6
|
|
|
35
|
-
|
|
7
|
+
## Rails 7.1.3.3 (May 16, 2024) ##
|
|
36
8
|
|
|
9
|
+
* Upgrade Trix to 1.3.2 to fix [CVE-2024-34341](https://github.com/basecamp/trix/security/advisories/GHSA-qjqp-xr96-cj99).
|
|
37
10
|
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
* No changes.
|
|
11
|
+
*Rafael Mendonça França*
|
|
41
12
|
|
|
42
13
|
|
|
43
|
-
## Rails 7.
|
|
14
|
+
## Rails 7.1.3.2 (February 21, 2024) ##
|
|
44
15
|
|
|
45
16
|
* No changes.
|
|
46
17
|
|
|
47
18
|
|
|
48
|
-
## Rails 7.
|
|
19
|
+
## Rails 7.1.3.1 (February 21, 2024) ##
|
|
49
20
|
|
|
50
21
|
* No changes.
|
|
51
22
|
|
|
52
23
|
|
|
53
|
-
## Rails 7.
|
|
24
|
+
## Rails 7.1.3 (January 16, 2024) ##
|
|
54
25
|
|
|
55
26
|
* No changes.
|
|
56
27
|
|
|
57
28
|
|
|
58
|
-
## Rails 7.
|
|
59
|
-
|
|
60
|
-
* No changes.
|
|
61
|
-
|
|
29
|
+
## Rails 7.1.2 (November 10, 2023) ##
|
|
62
30
|
|
|
63
|
-
|
|
31
|
+
* Compile ESM package that can be used directly in the browser as `actiontext.esm.js`.
|
|
64
32
|
|
|
65
|
-
*
|
|
33
|
+
*Matias Grunberg*
|
|
66
34
|
|
|
35
|
+
* Fix using actiontext.js with Sprockets.
|
|
67
36
|
|
|
68
|
-
|
|
37
|
+
*Matias Grunberg*
|
|
69
38
|
|
|
70
|
-
*
|
|
39
|
+
* Upgrade Trix to 2.0.7.
|
|
71
40
|
|
|
41
|
+
*Hartley McGuire*
|
|
72
42
|
|
|
73
|
-
|
|
43
|
+
* Fix using Trix with Sprockets.
|
|
74
44
|
|
|
75
|
-
*
|
|
45
|
+
*Hartley McGuire*
|
|
76
46
|
|
|
77
47
|
|
|
78
|
-
## Rails 7.
|
|
48
|
+
## Rails 7.1.1 (October 11, 2023) ##
|
|
79
49
|
|
|
80
50
|
* No changes.
|
|
81
51
|
|
|
82
52
|
|
|
83
|
-
## Rails 7.0
|
|
53
|
+
## Rails 7.1.0 (October 05, 2023) ##
|
|
84
54
|
|
|
85
55
|
* No changes.
|
|
86
56
|
|
|
87
57
|
|
|
88
|
-
## Rails 7.0.
|
|
58
|
+
## Rails 7.1.0.rc2 (October 01, 2023) ##
|
|
89
59
|
|
|
90
60
|
* No changes.
|
|
91
61
|
|
|
92
62
|
|
|
93
|
-
## Rails 7.0.
|
|
63
|
+
## Rails 7.1.0.rc1 (September 27, 2023) ##
|
|
94
64
|
|
|
95
65
|
* No changes.
|
|
96
66
|
|
|
97
67
|
|
|
98
|
-
## Rails 7.0.
|
|
68
|
+
## Rails 7.1.0.beta1 (September 13, 2023) ##
|
|
99
69
|
|
|
100
|
-
*
|
|
70
|
+
* Use `Rails::HTML5::SafeListSanitizer` by default in the Rails 7.1 configuration if it is
|
|
71
|
+
supported.
|
|
101
72
|
|
|
73
|
+
Action Text's sanitizer can be configured by setting
|
|
74
|
+
`config.action_text.sanitizer_vendor`. Supported values are `Rails::HTML4::Sanitizer` or
|
|
75
|
+
`Rails::HTML5::Sanitizer`.
|
|
102
76
|
|
|
103
|
-
|
|
77
|
+
The Rails 7.1 configuration will set this to `Rails::HTML5::Sanitizer` when it is supported, and
|
|
78
|
+
fall back to `Rails::HTML4::Sanitizer`. Previous configurations default to
|
|
79
|
+
`Rails::HTML4::Sanitizer`.
|
|
104
80
|
|
|
105
|
-
|
|
81
|
+
As a result of this change, the defaults for `ActionText::ContentHelper.allowed_tags` and
|
|
82
|
+
`.allowed_attributes` are applied at runtime, so the value of these attributes is now 'nil'
|
|
83
|
+
unless set by the application. You may call `sanitizer_allowed_tags` or
|
|
84
|
+
`sanitizer_allowed_attributes` to inspect the tags and attributes being allowed by the
|
|
85
|
+
sanitizer.
|
|
106
86
|
|
|
87
|
+
*Mike Dalessio*
|
|
107
88
|
|
|
108
|
-
|
|
89
|
+
* Attachables now can override default attachment missing template.
|
|
109
90
|
|
|
110
|
-
|
|
91
|
+
When rendering Action Text attachments where the underlying attachable model has
|
|
92
|
+
been removed, a fallback template is used. You now can override this template on
|
|
93
|
+
a per-model basis. For example, you could render a placeholder image for a file
|
|
94
|
+
attachment or the text "Deleted User" for a User attachment.
|
|
111
95
|
|
|
112
|
-
|
|
96
|
+
*Matt Swanson*, *Joel Drapper*
|
|
113
97
|
|
|
114
|
-
*
|
|
98
|
+
* Update bundled Trix version from `1.3.1` to `2.0.4`.
|
|
115
99
|
|
|
116
|
-
*
|
|
100
|
+
*Sarah Ridge*, *Sean Doyle*
|
|
117
101
|
|
|
118
|
-
*
|
|
102
|
+
* Apply `field_error_proc` to `rich_text_area` form fields.
|
|
119
103
|
|
|
120
|
-
*
|
|
104
|
+
*Kaíque Kandy Koga*
|
|
121
105
|
|
|
106
|
+
* Action Text attachment URLs rendered in a background job (a la Turbo
|
|
107
|
+
Streams) now use `Rails.application.default_url_options` and
|
|
108
|
+
`Rails.application.config.force_ssl` instead of `http://example.org`.
|
|
122
109
|
|
|
123
|
-
|
|
110
|
+
*Jonathan Hefner*
|
|
124
111
|
|
|
125
|
-
*
|
|
126
|
-
|
|
127
|
-
|
|
128
|
-
## Rails 7.0.0.alpha1 (September 15, 2021) ##
|
|
129
|
-
|
|
130
|
-
* Make the Action Text + Trix JavaScript and CSS available through the asset pipeline.
|
|
131
|
-
|
|
132
|
-
*DHH*
|
|
133
|
-
|
|
134
|
-
* OpenSSL constants are now used for Digest computations.
|
|
135
|
-
|
|
136
|
-
*Dirkjan Bussink*
|
|
137
|
-
|
|
138
|
-
* Add support for passing `form:` option to `rich_text_area_tag` and
|
|
139
|
-
`rich_text_area` helpers to specify the `<input type="hidden" form="...">`
|
|
140
|
-
value.
|
|
112
|
+
* Support `strict_loading:` option for `has_rich_text` declaration
|
|
141
113
|
|
|
142
114
|
*Sean Doyle*
|
|
143
115
|
|
|
144
|
-
*
|
|
145
|
-
|
|
146
|
-
*Mark VanLandingham*
|
|
147
|
-
|
|
148
|
-
* Expose how we render the HTML _surrounding_ rich text content as an
|
|
149
|
-
extensible `layouts/action_view/contents/_content.html.erb` template to
|
|
150
|
-
encourage user-land customizations, while retaining private API control over how
|
|
151
|
-
the rich text itself is rendered by `action_text/contents/_content.html.erb`
|
|
152
|
-
partial.
|
|
153
|
-
|
|
154
|
-
*Sean Doyle*
|
|
116
|
+
* Update ContentAttachment so that it can encapsulate arbitrary HTML content in a document.
|
|
155
117
|
|
|
156
|
-
*
|
|
118
|
+
*Jamis Buck*
|
|
157
119
|
|
|
158
|
-
|
|
120
|
+
* Fix an issue that caused the content layout to render multiple times when a
|
|
121
|
+
rich_text field was updated.
|
|
159
122
|
|
|
123
|
+
*Jacob Herrington*
|
|
160
124
|
|
|
161
|
-
Please check [
|
|
125
|
+
Please check [7-0-stable](https://github.com/rails/rails/blob/7-0-stable/actiontext/CHANGELOG.md) for previous changes.
|
data/MIT-LICENSE
CHANGED
data/README.md
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
# Action Text
|
|
2
2
|
|
|
3
|
-
Action Text brings rich text content and editing to Rails. It includes the [Trix editor](https://trix-editor.org) that handles everything from formatting to links to quotes to lists to embedded images and galleries. The rich text content generated by the Trix editor is saved in its own RichText model that's associated with any existing Active Record model in the application. Any embedded images (or other attachments) are automatically stored using Active Storage and associated with the included RichText model.
|
|
3
|
+
Action Text brings rich text content and editing to \Rails. It includes the [Trix editor](https://trix-editor.org) that handles everything from formatting to links to quotes to lists to embedded images and galleries. The rich text content generated by the Trix editor is saved in its own RichText model that's associated with any existing Active Record model in the application. Any embedded images (or other attachments) are automatically stored using Active Storage and associated with the included RichText model.
|
|
4
4
|
|
|
5
|
-
You can read more about Action Text in the [Action Text Overview](https://
|
|
5
|
+
You can read more about Action Text in the [Action Text Overview](https://guides.rubyonrails.org/action_text_overview.html) guide.
|
|
6
6
|
|
|
7
7
|
## Development
|
|
8
8
|
|