actiontext 7.1.3.4 → 7.1.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +38 -1
  3. data/app/assets/javascripts/trix.js +1756 -201
  4. data/lib/action_text/content.rb +4 -1
  5. data/lib/action_text/gem_version.rb +2 -2
  6. data/lib/action_text/plain_text_conversion.rb +6 -1
  7. data/lib/action_text.rb +1 -1
  8. data/package.json +1 -1
  9. metadata +17 -17
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: d51a41ff03b550ac428a52ce89ee785539d2ac0b386c5597f4c06b763070d054
4
- data.tar.gz: 85028cdc38e4448c321e17190924c602f7bd940588307ef42206c7e0842ba31a
3
+ metadata.gz: eb74f8a7619b8294b0f780f649611245104b6024e96887adad4ccdafb54076db
4
+ data.tar.gz: 97c1d24e0a68191e7909bdbb7bd4f63a61086c73a4d4f8c64921fe0150c04c08
5
5
  SHA512:
6
- metadata.gz: 417dec3ad3e197b566e52b5b42356481d6a5f54e1a792b5f16c7eeaa45137b2a4bdeeb32e83fd890d884fc60864e7d6062ebe25115710a40de06df3c93812c95
7
- data.tar.gz: ab1691bf97b79a8f2b644b6bf324c06fc663fd8ca2ba4641a906fcf7062a4c4acb4103b25b405561fc21e81198ce7b7541a9d02921d137ae14de6eb75d01b1c7
6
+ metadata.gz: 7ba1c7ad2177a86adc5d155070860fd09f5c4fe2485912dad6419aa748e0d6843cf874bc69361cee342096b86ac7cfc30038727473e5f09434457b328b48f53d
7
+ data.tar.gz: d1ee2ce1e3f1c4d2c0063251d2257aefa03b3fd7db4eeca59143f033ecb0da68c2c787e02bba421ac3b11d944acebc51b4bce3a01cd83b7ef38cc0213543cff5
data/CHANGELOG.md CHANGED
@@ -1,12 +1,49 @@
1
+ ## Rails 7.1.5.1 (December 10, 2024) ##
2
+
3
+ * Update vendored trix version to 2.1.10
4
+
5
+ *John Hawthorn*
6
+
7
+
8
+ ## Rails 7.1.5 (October 30, 2024) ##
9
+
10
+ * No changes.
11
+
12
+
13
+ ## Rails 7.1.4.2 (October 23, 2024) ##
14
+
15
+ * No changes.
16
+
17
+
18
+ ## Rails 7.1.4.1 (October 15, 2024) ##
19
+
20
+ * Avoid backtracing in plain_text_for_blockquote_node
21
+
22
+ [CVE-2024-47888]
23
+
24
+ *John Hawthorn*
25
+
26
+ ## Rails 7.1.4 (August 22, 2024) ##
27
+
28
+ * Strip `content` attribute if the key is present but the value is empty
29
+
30
+ *Jeremy Green*
31
+
32
+ * Only sanitize `content` attribute when present in attachments.
33
+
34
+ *Petrik de Heus*
35
+
36
+
1
37
  ## Rails 7.1.3.4 (June 04, 2024) ##
2
38
 
3
39
  * Sanitize ActionText HTML ContentAttachment in Trix edit view
4
40
  [CVE-2024-32464]
5
41
 
42
+ *Aaron Patterson*
6
43
 
7
44
  ## Rails 7.1.3.3 (May 16, 2024) ##
8
45
 
9
- * Upgrade Trix to 1.3.2 to fix [CVE-2024-34341](https://github.com/basecamp/trix/security/advisories/GHSA-qjqp-xr96-cj99).
46
+ * Upgrade Trix to 2.1.1 to fix [CVE-2024-34341](https://github.com/basecamp/trix/security/advisories/GHSA-qjqp-xr96-cj99).
10
47
 
11
48
  *Rafael Mendonça França*
12
49