angular_xss 0.3.0 → 0.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (92) hide show
  1. checksums.yaml +7 -0
  2. data/.rspec +1 -0
  3. data/.ruby-version +1 -0
  4. data/.travis.yml +20 -9
  5. data/Gemfile +1 -0
  6. data/Gemfile.lock +1 -0
  7. data/Rakefile +3 -66
  8. data/gemfiles/Gemfile.rails-3.2 +9 -0
  9. data/gemfiles/Gemfile.rails-3.2.lock +91 -0
  10. data/gemfiles/Gemfile.rails-4.2.haml-4 +8 -0
  11. data/gemfiles/Gemfile.rails-4.2.haml-4.lock +88 -0
  12. data/gemfiles/Gemfile.rails-4.2.haml-5 +8 -0
  13. data/gemfiles/Gemfile.rails-4.2.haml-5.lock +90 -0
  14. data/gemfiles/Gemfile.rails-5.1.haml-4 +8 -0
  15. data/gemfiles/Gemfile.rails-5.1.haml-4.lock +85 -0
  16. data/gemfiles/Gemfile.rails-5.1.haml-5 +8 -0
  17. data/gemfiles/Gemfile.rails-5.1.haml-5.lock +87 -0
  18. data/lib/angular_xss/action_view.rb +2 -1
  19. data/lib/angular_xss/erb.rb +2 -1
  20. data/lib/angular_xss/haml.rb +14 -10
  21. data/lib/angular_xss/safe_buffer.rb +4 -3
  22. data/lib/angular_xss/version.rb +1 -1
  23. data/spec/{shared/tests → angular_xss}/erb_spec.rb +1 -1
  24. data/spec/{shared/tests → angular_xss}/haml_spec.rb +1 -1
  25. data/spec/{shared/tests → angular_xss}/safe_buffer_spec.rb +0 -0
  26. data/spec/spec_helper.rb +37 -0
  27. data/spec/{shared/support → support}/engine_preventing_angular_xss.rb +10 -2
  28. data/spec/{shared/app_root/app/views/test → templates}/_test_erb.erb +0 -0
  29. data/spec/{shared/app_root/app/views/test → templates}/_test_haml.haml +5 -3
  30. metadata +76 -204
  31. data/spec/rails-2.3/Gemfile +0 -12
  32. data/spec/rails-2.3/Gemfile.lock +0 -62
  33. data/spec/rails-2.3/Rakefile +0 -11
  34. data/spec/rails-2.3/app_root/config/boot.rb +0 -129
  35. data/spec/rails-2.3/app_root/config/database.yml +0 -4
  36. data/spec/rails-2.3/app_root/config/environment.rb +0 -14
  37. data/spec/rails-2.3/app_root/config/environments/test.rb +0 -28
  38. data/spec/rails-2.3/app_root/config/preinitializer.rb +0 -20
  39. data/spec/rails-2.3/app_root/config/routes.rb +0 -4
  40. data/spec/rails-2.3/app_root/lib/console_with_fixtures.rb +0 -4
  41. data/spec/rails-2.3/app_root/log/.gitignore +0 -1
  42. data/spec/rails-2.3/app_root/script/console +0 -7
  43. data/spec/rails-2.3/rcov.opts +0 -2
  44. data/spec/rails-2.3/spec.opts +0 -4
  45. data/spec/rails-2.3/spec/spec_helper.rb +0 -20
  46. data/spec/rails-3.2/.rspec +0 -2
  47. data/spec/rails-3.2/Gemfile +0 -10
  48. data/spec/rails-3.2/Gemfile.lock +0 -129
  49. data/spec/rails-3.2/Rakefile +0 -10
  50. data/spec/rails-3.2/app_root/.gitignore +0 -4
  51. data/spec/rails-3.2/app_root/config/application.rb +0 -32
  52. data/spec/rails-3.2/app_root/config/boot.rb +0 -13
  53. data/spec/rails-3.2/app_root/config/database.yml +0 -4
  54. data/spec/rails-3.2/app_root/config/environment.rb +0 -5
  55. data/spec/rails-3.2/app_root/config/environments/test.rb +0 -35
  56. data/spec/rails-3.2/app_root/config/initializers/backtrace_silencers.rb +0 -7
  57. data/spec/rails-3.2/app_root/config/initializers/inflections.rb +0 -10
  58. data/spec/rails-3.2/app_root/config/initializers/mime_types.rb +0 -5
  59. data/spec/rails-3.2/app_root/config/initializers/secret_token.rb +0 -7
  60. data/spec/rails-3.2/app_root/config/initializers/session_store.rb +0 -8
  61. data/spec/rails-3.2/app_root/config/routes.rb +0 -58
  62. data/spec/rails-3.2/app_root/lib/tasks/.gitkeep +0 -0
  63. data/spec/rails-3.2/app_root/log/.gitkeep +0 -0
  64. data/spec/rails-3.2/app_root/script/rails +0 -6
  65. data/spec/rails-3.2/rcov.opts +0 -2
  66. data/spec/rails-3.2/spec/spec_helper.rb +0 -20
  67. data/spec/rails-4.2/.rspec +0 -2
  68. data/spec/rails-4.2/Gemfile +0 -10
  69. data/spec/rails-4.2/Gemfile.lock +0 -157
  70. data/spec/rails-4.2/Rakefile +0 -10
  71. data/spec/rails-4.2/app_root/.gitignore +0 -4
  72. data/spec/rails-4.2/app_root/config/application.rb +0 -34
  73. data/spec/rails-4.2/app_root/config/boot.rb +0 -13
  74. data/spec/rails-4.2/app_root/config/database.yml +0 -4
  75. data/spec/rails-4.2/app_root/config/environment.rb +0 -5
  76. data/spec/rails-4.2/app_root/config/environments/test.rb +0 -35
  77. data/spec/rails-4.2/app_root/config/initializers/backtrace_silencers.rb +0 -7
  78. data/spec/rails-4.2/app_root/config/initializers/inflections.rb +0 -10
  79. data/spec/rails-4.2/app_root/config/initializers/mime_types.rb +0 -5
  80. data/spec/rails-4.2/app_root/config/initializers/secret_token.rb +0 -7
  81. data/spec/rails-4.2/app_root/config/initializers/session_store.rb +0 -8
  82. data/spec/rails-4.2/app_root/config/routes.rb +0 -3
  83. data/spec/rails-4.2/app_root/lib/tasks/.gitkeep +0 -0
  84. data/spec/rails-4.2/app_root/log/.gitkeep +0 -0
  85. data/spec/rails-4.2/app_root/script/rails +0 -6
  86. data/spec/rails-4.2/rcov.opts +0 -2
  87. data/spec/rails-4.2/spec/spec_helper.rb +0 -27
  88. data/spec/shared/app_root/app/controllers/application_controller.rb +0 -2
  89. data/spec/shared/app_root/app/helpers/application_helper.rb +0 -3
  90. data/spec/shared/app_root/app/models/.gitkeep +0 -0
  91. data/spec/shared/app_root/config/database.yml +0 -4
  92. data/spec/shared/app_root/db/migrate/.gitkeep +0 -0
data/gemfiles/Gemfile.rails-5.1.haml-5 ADDED
@@ -0,0 +1,8 @@
1
+ source 'http://rubygems.org'
2
+
3
+ gem 'actionpack', '~>5.1'
4
+ gem 'rspec'
5
+ gem 'haml', '~> 5'
6
+ gem 'angular_xss', :path => '..'
7
+ gem 'gemika'
8
+ gem 'rake'
data/gemfiles/Gemfile.rails-5.1.haml-5.lock ADDED
@@ -0,0 +1,87 @@
1
+ PATH
2
+ remote: ..
3
+ specs:
4
+ angular_xss (0.3.1)
5
+ activesupport
6
+ haml (>= 3.1.5)
7
+
8
+ GEM
9
+ remote: http://rubygems.org/
10
+ specs:
11
+ actionpack (5.1.4)
12
+ actionview (= 5.1.4)
13
+ activesupport (= 5.1.4)
14
+ rack (~> 2.0)
15
+ rack-test (>= 0.6.3)
16
+ rails-dom-testing (~> 2.0)
17
+ rails-html-sanitizer (~> 1.0, >= 1.0.2)
18
+ actionview (5.1.4)
19
+ activesupport (= 5.1.4)
20
+ builder (~> 3.1)
21
+ erubi (~> 1.4)
22
+ rails-dom-testing (~> 2.0)
23
+ rails-html-sanitizer (~> 1.0, >= 1.0.3)
24
+ activesupport (5.1.4)
25
+ concurrent-ruby (~> 1.0, >= 1.0.2)
26
+ i18n (~> 0.7)
27
+ minitest (~> 5.1)
28
+ tzinfo (~> 1.1)
29
+ builder (3.2.3)
30
+ concurrent-ruby (1.0.5)
31
+ crass (1.0.3)
32
+ diff-lcs (1.3)
33
+ erubi (1.7.0)
34
+ gemika (0.3.2)
35
+ haml (5.0.4)
36
+ temple (>= 0.8.0)
37
+ tilt
38
+ i18n (0.9.1)
39
+ concurrent-ruby (~> 1.0)
40
+ loofah (2.1.1)
41
+ crass (~> 1.0.2)
42
+ nokogiri (>= 1.5.9)
43
+ mini_portile2 (2.3.0)
44
+ minitest (5.10.3)
45
+ nokogiri (1.8.1)
46
+ mini_portile2 (~> 2.3.0)
47
+ rack (2.0.3)
48
+ rack-test (0.8.2)
49
+ rack (>= 1.0, < 3)
50
+ rails-dom-testing (2.0.3)
51
+ activesupport (>= 4.2.0)
52
+ nokogiri (>= 1.6)
53
+ rails-html-sanitizer (1.0.3)
54
+ loofah (~> 2.0)
55
+ rake (12.3.0)
56
+ rspec (3.7.0)
57
+ rspec-core (~> 3.7.0)
58
+ rspec-expectations (~> 3.7.0)
59
+ rspec-mocks (~> 3.7.0)
60
+ rspec-core (3.7.0)
61
+ rspec-support (~> 3.7.0)
62
+ rspec-expectations (3.7.0)
63
+ diff-lcs (>= 1.2.0, < 2.0)
64
+ rspec-support (~> 3.7.0)
65
+ rspec-mocks (3.7.0)
66
+ diff-lcs (>= 1.2.0, < 2.0)
67
+ rspec-support (~> 3.7.0)
68
+ rspec-support (3.7.0)
69
+ temple (0.8.0)
70
+ thread_safe (0.3.6)
71
+ tilt (2.0.8)
72
+ tzinfo (1.2.4)
73
+ thread_safe (~> 0.1)
74
+
75
+ PLATFORMS
76
+ ruby
77
+
78
+ DEPENDENCIES
79
+ actionpack (~> 5.1)
80
+ angular_xss!
81
+ gemika
82
+ haml (~> 5)
83
+ rake
84
+ rspec
85
+
86
+ BUNDLED WITH
87
+ 1.15.4
data/lib/angular_xss/action_view.rb CHANGED
@@ -8,6 +8,7 @@ ActionView::Template.class_eval do
8
8
  end
9
9
  end
10
10
 
11
- alias_method_chain :compile, :angular_xss
11
+ alias_method :compile_without_angular_xss, :compile
12
+ alias_method :compile, :compile_with_angular_xss
12
13
 
13
14
  end
data/lib/angular_xss/erb.rb CHANGED
@@ -12,7 +12,8 @@ ERB::Util.module_eval do
12
12
  end
13
13
  end
14
14
 
15
- alias_method_chain :unwrapped_html_escape, :escaping_angular_expressions
15
+ alias_method :unwrapped_html_escape_without_escaping_angular_expressions, :unwrapped_html_escape
16
+ alias_method :unwrapped_html_escape, :unwrapped_html_escape_with_escaping_angular_expressions
16
17
 
17
18
  singleton_class.send(:remove_method, :unwrapped_html_escape)
18
19
  module_function :unwrapped_html_escape
data/lib/angular_xss/haml.rb CHANGED
@@ -1,15 +1,19 @@
1
- # Use module_eval so we crash when Haml::Helpers has not yet been loaded.
2
- Haml::Helpers.module_eval do
1
+ # Haml > 5 falls back to erb
2
+ if Haml::VERSION < '5'
3
+ # Use module_eval so we crash when Haml::Helpers has not yet been loaded.
4
+ Haml::Helpers.module_eval do
3
5
 
4
- def html_escape_with_escaping_angular_expressions(s)
5
- s = s.to_s
6
- if s.html_safe?
7
- s
8
- else
9
- html_escape_without_escaping_angular_expressions(AngularXss::Escaper.escape(s))
6
+ def html_escape_with_escaping_angular_expressions(s)
7
+ s = s.to_s
8
+ if s.html_safe?
9
+ s
10
+ else
11
+ html_escape_without_escaping_angular_expressions(AngularXss::Escaper.escape(s))
12
+ end
10
13
  end
11
- end
12
14
 
13
- alias_method_chain :html_escape, :escaping_angular_expressions
15
+ alias_method :html_escape_without_escaping_angular_expressions, :html_escape
16
+ alias_method :html_escape, :html_escape_with_escaping_angular_expressions
14
17
 
18
+ end
15
19
  end
data/lib/angular_xss/safe_buffer.rb CHANGED
@@ -4,15 +4,16 @@ ActiveSupport::SafeBuffer.class_eval do
4
4
 
5
5
  private
6
6
 
7
- def html_escape_interpolated_argument_with_rails_xss(arg)
7
+ def html_escape_interpolated_argument_with_angular_xss(arg)
8
8
  if arg.html_safe?
9
9
  arg
10
10
  else
11
- html_escape_interpolated_argument_without_rails_xss(AngularXss::Escaper.escape(arg))
11
+ html_escape_interpolated_argument_without_angular_xss(AngularXss::Escaper.escape(arg))
12
12
  end
13
13
  end
14
14
 
15
- alias_method_chain :html_escape_interpolated_argument, :rails_xss
15
+ alias_method :html_escape_interpolated_argument_without_angular_xss, :html_escape_interpolated_argument
16
+ alias_method :html_escape_interpolated_argument, :html_escape_interpolated_argument_with_angular_xss
16
17
 
17
18
  end
18
19
 
data/lib/angular_xss/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module AngularXss
2
- VERSION = '0.3.0'
2
+ VERSION = '0.3.1'
3
3
  end
data/spec/{shared/tests → angular_xss}/erb_spec.rb RENAMED
@@ -2,6 +2,6 @@ require 'spec_helper'
2
2
 
3
3
  describe 'Angular XSS prevention in ERB', :type => :view do
4
4
 
5
- it_should_act_like 'engine preventing Angular XSS', :partial => 'test/test_erb'
5
+ it_should_behave_like 'engine preventing Angular XSS', :partial => 'test_erb'
6
6
 
7
7
  end
data/spec/{shared/tests → angular_xss}/haml_spec.rb RENAMED
@@ -2,6 +2,6 @@ require 'spec_helper'
2
2
 
3
3
  describe 'Angular XSS prevention in Haml', :type => :view do
4
4
 
5
- it_should_act_like 'engine preventing Angular XSS', :partial => 'test/test_haml'
5
+ it_should_behave_like 'engine preventing Angular XSS', :partial => 'test_haml'
6
6
 
7
7
  end
data/spec/spec_helper.rb ADDED
@@ -0,0 +1,37 @@
1
+ require 'pathname'
2
+ require 'active_support/all'
3
+ require 'action_dispatch'
4
+ require 'action_view'
5
+
6
+ begin
7
+ # Rails 3.2
8
+ require 'rails'
9
+ rescue LoadError
10
+ # Rails 4+
11
+ end
12
+
13
+ module Rails
14
+ def self.env
15
+ 'test'.inquiry
16
+ end
17
+ end
18
+
19
+ require 'haml'
20
+ require 'haml/template'
21
+
22
+ require 'angular_xss'
23
+
24
+
25
+ Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each {|f| require f}
26
+
27
+ TEMPLATE_ROOT = Pathname.new(__dir__).join('templates')
28
+
29
+
30
+ RSpec.configure do |config|
31
+ config.mock_with :rspec do |c|
32
+ c.syntax = [:should, :expect]
33
+ end
34
+ config.expect_with :rspec do |c|
35
+ c.syntax = [:should, :expect]
36
+ end
37
+ end
data/spec/{shared/support → support}/engine_preventing_angular_xss.rb RENAMED
@@ -1,6 +1,8 @@
1
- shared_examples_for 'engine preventing Angular XSS' do
1
+ shared_examples_for 'engine preventing Angular XSS' do |partial:|
2
2
 
3
- let(:engine) { respond_to?(:view) ? view : template }
3
+ let(:path_set) { ActionView::PathSet.new([TEMPLATE_ROOT]) }
4
+
5
+ let(:engine) { ActionView::Base.new(path_set) }
4
6
 
5
7
  let(:html) { engine.render(partial) }
6
8
 
@@ -72,4 +74,10 @@ shared_examples_for 'engine preventing Angular XSS' do
72
74
  html.should_not include('{{unsafe}}')
73
75
  end
74
76
 
77
+ it 'does not escape twice' do
78
+ escaped = AngularXss::Escaper.escape('{{')
79
+ double_escaped = AngularXss::Escaper.escape(escaped)
80
+ html.should_not include(double_escaped)
81
+ end
82
+
75
83
  end
data/spec/{shared/app_root/app/views/test → templates}/_test_haml.haml RENAMED
@@ -29,7 +29,9 @@
29
29
  %div{:class => '{{safe}}', :id => '{{safe}}'}
30
30
 
31
31
  -# Compiled at runtime:
32
- %div{:class => '{{unsafe}}', :id => '{{unsafe}}', :foo => rand}
33
- %div(bar="#{'{{unsafe}}'}")
34
- %div{:foo => '{{safe}}'.html_safe, :bar => '{{unsafe}}'}
32
+ - unsafe = '{{unsafe}}'
33
+ - safe = '{{safe}}'.html_safe
34
+ %div{:class => unsafe, :id => unsafe}
35
+ %div(bar="#{unsafe}")
36
+ %div{:foo => safe, :bar => unsafe}
35
37
  {{safe}}
metadata CHANGED
@@ -1,67 +1,70 @@
1
- --- !ruby/object:Gem::Specification
1
+ --- !ruby/object:Gem::Specification
2
2
  name: angular_xss
3
- version: !ruby/object:Gem::Version
4
- hash: 19
5
- prerelease:
6
- segments:
7
- - 0
8
- - 3
9
- - 0
10
- version: 0.3.0
3
+ version: !ruby/object:Gem::Version
4
+ version: 0.3.1
11
5
  platform: ruby
12
- authors:
6
+ authors:
13
7
  - Henning Koch
14
8
  autorequire:
15
9
  bindir: bin
16
10
  cert_chain: []
17
-
18
- date: 2017-07-31 00:00:00 Z
19
- dependencies:
20
- - !ruby/object:Gem::Dependency
11
+ date: 2017-11-21 00:00:00.000000000 Z
12
+ dependencies:
13
+ - !ruby/object:Gem::Dependency
21
14
  name: activesupport
22
- prerelease: false
23
- requirement: &id001 !ruby/object:Gem::Requirement
24
- none: false
25
- requirements:
15
+ requirement: !ruby/object:Gem::Requirement
16
+ requirements:
26
17
  - - ">="
27
- - !ruby/object:Gem::Version
28
- hash: 3
29
- segments:
30
- - 0
31
- version: "0"
18
+ - !ruby/object:Gem::Version
19
+ version: '0'
32
20
  type: :runtime
33
- version_requirements: *id001
34
- - !ruby/object:Gem::Dependency
35
- name: haml
36
21
  prerelease: false
37
- requirement: &id002 !ruby/object:Gem::Requirement
38
- none: false
39
- requirements:
22
+ version_requirements: !ruby/object:Gem::Requirement
23
+ requirements:
24
+ - - ">="
25
+ - !ruby/object:Gem::Version
26
+ version: '0'
27
+ - !ruby/object:Gem::Dependency
28
+ name: haml
29
+ requirement: !ruby/object:Gem::Requirement
30
+ requirements:
40
31
  - - ">="
41
- - !ruby/object:Gem::Version
42
- hash: 9
43
- segments:
44
- - 3
45
- - 1
46
- - 5
32
+ - !ruby/object:Gem::Version
47
33
  version: 3.1.5
48
34
  type: :runtime
49
- version_requirements: *id002
50
- description: Patches rails_xss and Haml so AngularJS interpolations are auto-escaped in unsafe strings.
35
+ prerelease: false
36
+ version_requirements: !ruby/object:Gem::Requirement
37
+ requirements:
38
+ - - ">="
39
+ - !ruby/object:Gem::Version
40
+ version: 3.1.5
41
+ description: Patches rails_xss and Haml so AngularJS interpolations are auto-escaped
42
+ in unsafe strings.
51
43
  email: henning.koch@makandra.de
52
44
  executables: []
53
-
54
45
  extensions: []
55
-
56
46
  extra_rdoc_files: []
57
-
58
- files:
59
- - .gitignore
60
- - .travis.yml
47
+ files:
48
+ - ".gitignore"
49
+ - ".rspec"
50
+ - ".ruby-version"
51
+ - ".travis.yml"
52
+ - Gemfile
53
+ - Gemfile.lock
61
54
  - LICENSE
62
55
  - README.md
63
56
  - Rakefile
64
57
  - angular_xss.gemspec
58
+ - gemfiles/Gemfile.rails-3.2
59
+ - gemfiles/Gemfile.rails-3.2.lock
60
+ - gemfiles/Gemfile.rails-4.2.haml-4
61
+ - gemfiles/Gemfile.rails-4.2.haml-4.lock
62
+ - gemfiles/Gemfile.rails-4.2.haml-5
63
+ - gemfiles/Gemfile.rails-4.2.haml-5.lock
64
+ - gemfiles/Gemfile.rails-5.1.haml-4
65
+ - gemfiles/Gemfile.rails-5.1.haml-4.lock
66
+ - gemfiles/Gemfile.rails-5.1.haml-5
67
+ - gemfiles/Gemfile.rails-5.1.haml-5.lock
65
68
  - lib/angular_xss.rb
66
69
  - lib/angular_xss/action_view.rb
67
70
  - lib/angular_xss/erb.rb
@@ -69,174 +72,43 @@ files:
69
72
  - lib/angular_xss/haml.rb
70
73
  - lib/angular_xss/safe_buffer.rb
71
74
  - lib/angular_xss/version.rb
72
- - spec/rails-2.3/Gemfile
73
- - spec/rails-2.3/Gemfile.lock
74
- - spec/rails-2.3/Rakefile
75
- - spec/rails-2.3/app_root/config/boot.rb
76
- - spec/rails-2.3/app_root/config/database.yml
77
- - spec/rails-2.3/app_root/config/environment.rb
78
- - spec/rails-2.3/app_root/config/environments/test.rb
79
- - spec/rails-2.3/app_root/config/preinitializer.rb
80
- - spec/rails-2.3/app_root/config/routes.rb
81
- - spec/rails-2.3/app_root/lib/console_with_fixtures.rb
82
- - spec/rails-2.3/app_root/log/.gitignore
83
- - spec/rails-2.3/app_root/script/console
84
- - spec/rails-2.3/rcov.opts
85
- - spec/rails-2.3/spec.opts
86
- - spec/rails-2.3/spec/spec_helper.rb
87
- - spec/rails-3.2/.rspec
88
- - spec/rails-3.2/Gemfile
89
- - spec/rails-3.2/Gemfile.lock
90
- - spec/rails-3.2/Rakefile
91
- - spec/rails-3.2/app_root/.gitignore
92
- - spec/rails-3.2/app_root/config/application.rb
93
- - spec/rails-3.2/app_root/config/boot.rb
94
- - spec/rails-3.2/app_root/config/database.yml
95
- - spec/rails-3.2/app_root/config/environment.rb
96
- - spec/rails-3.2/app_root/config/environments/test.rb
97
- - spec/rails-3.2/app_root/config/initializers/backtrace_silencers.rb
98
- - spec/rails-3.2/app_root/config/initializers/inflections.rb
99
- - spec/rails-3.2/app_root/config/initializers/mime_types.rb
100
- - spec/rails-3.2/app_root/config/initializers/secret_token.rb
101
- - spec/rails-3.2/app_root/config/initializers/session_store.rb
102
- - spec/rails-3.2/app_root/config/routes.rb
103
- - spec/rails-3.2/app_root/lib/tasks/.gitkeep
104
- - spec/rails-3.2/app_root/log/.gitkeep
105
- - spec/rails-3.2/app_root/script/rails
106
- - spec/rails-3.2/rcov.opts
107
- - spec/rails-3.2/spec/spec_helper.rb
108
- - spec/rails-4.2/.rspec
109
- - spec/rails-4.2/Gemfile
110
- - spec/rails-4.2/Gemfile.lock
111
- - spec/rails-4.2/Rakefile
112
- - spec/rails-4.2/app_root/.gitignore
113
- - spec/rails-4.2/app_root/config/application.rb
114
- - spec/rails-4.2/app_root/config/boot.rb
115
- - spec/rails-4.2/app_root/config/database.yml
116
- - spec/rails-4.2/app_root/config/environment.rb
117
- - spec/rails-4.2/app_root/config/environments/test.rb
118
- - spec/rails-4.2/app_root/config/initializers/backtrace_silencers.rb
119
- - spec/rails-4.2/app_root/config/initializers/inflections.rb
120
- - spec/rails-4.2/app_root/config/initializers/mime_types.rb
121
- - spec/rails-4.2/app_root/config/initializers/secret_token.rb
122
- - spec/rails-4.2/app_root/config/initializers/session_store.rb
123
- - spec/rails-4.2/app_root/config/routes.rb
124
- - spec/rails-4.2/app_root/lib/tasks/.gitkeep
125
- - spec/rails-4.2/app_root/log/.gitkeep
126
- - spec/rails-4.2/app_root/script/rails
127
- - spec/rails-4.2/rcov.opts
128
- - spec/rails-4.2/spec/spec_helper.rb
129
- - spec/shared/app_root/app/controllers/application_controller.rb
130
- - spec/shared/app_root/app/helpers/application_helper.rb
131
- - spec/shared/app_root/app/models/.gitkeep
132
- - spec/shared/app_root/app/views/test/_test_erb.erb
133
- - spec/shared/app_root/app/views/test/_test_haml.haml
134
- - spec/shared/app_root/config/database.yml
135
- - spec/shared/app_root/db/migrate/.gitkeep
136
- - spec/shared/support/engine_preventing_angular_xss.rb
137
- - spec/shared/tests/erb_spec.rb
138
- - spec/shared/tests/haml_spec.rb
139
- - spec/shared/tests/safe_buffer_spec.rb
75
+ - spec/angular_xss/erb_spec.rb
76
+ - spec/angular_xss/haml_spec.rb
77
+ - spec/angular_xss/safe_buffer_spec.rb
78
+ - spec/spec_helper.rb
79
+ - spec/support/engine_preventing_angular_xss.rb
80
+ - spec/templates/_test_erb.erb
81
+ - spec/templates/_test_haml.haml
140
82
  homepage: https://github.com/makandra/angular_xss
141
- licenses:
83
+ licenses:
142
84
  - MIT
85
+ metadata: {}
143
86
  post_install_message:
144
87
  rdoc_options: []
145
-
146
- require_paths:
88
+ require_paths:
147
89
  - lib
148
- required_ruby_version: !ruby/object:Gem::Requirement
149
- none: false
150
- requirements:
90
+ required_ruby_version: !ruby/object:Gem::Requirement
91
+ requirements:
151
92
  - - ">="
152
- - !ruby/object:Gem::Version
153
- hash: 3
154
- segments:
155
- - 0
156
- version: "0"
157
- required_rubygems_version: !ruby/object:Gem::Requirement
158
- none: false
159
- requirements:
93
+ - !ruby/object:Gem::Version
94
+ version: '0'
95
+ required_rubygems_version: !ruby/object:Gem::Requirement
96
+ requirements:
160
97
  - - ">="
161
- - !ruby/object:Gem::Version
162
- hash: 3
163
- segments:
164
- - 0
165
- version: "0"
98
+ - !ruby/object:Gem::Version
99
+ version: '0'
166
100
  requirements: []
167
-
168
101
  rubyforge_project:
169
- rubygems_version: 1.8.30
102
+ rubygems_version: 2.5.2.1
170
103
  signing_key:
171
- specification_version: 3
172
- summary: Patches rails_xss and Haml so AngularJS interpolations are auto-escaped in unsafe strings.
173
- test_files:
174
- - spec/rails-2.3/Gemfile
175
- - spec/rails-2.3/Gemfile.lock
176
- - spec/rails-2.3/Rakefile
177
- - spec/rails-2.3/app_root/config/boot.rb
178
- - spec/rails-2.3/app_root/config/database.yml
179
- - spec/rails-2.3/app_root/config/environment.rb
180
- - spec/rails-2.3/app_root/config/environments/test.rb
181
- - spec/rails-2.3/app_root/config/preinitializer.rb
182
- - spec/rails-2.3/app_root/config/routes.rb
183
- - spec/rails-2.3/app_root/lib/console_with_fixtures.rb
184
- - spec/rails-2.3/app_root/log/.gitignore
185
- - spec/rails-2.3/app_root/script/console
186
- - spec/rails-2.3/rcov.opts
187
- - spec/rails-2.3/spec.opts
188
- - spec/rails-2.3/spec/spec_helper.rb
189
- - spec/rails-3.2/.rspec
190
- - spec/rails-3.2/Gemfile
191
- - spec/rails-3.2/Gemfile.lock
192
- - spec/rails-3.2/Rakefile
193
- - spec/rails-3.2/app_root/.gitignore
194
- - spec/rails-3.2/app_root/config/application.rb
195
- - spec/rails-3.2/app_root/config/boot.rb
196
- - spec/rails-3.2/app_root/config/database.yml
197
- - spec/rails-3.2/app_root/config/environment.rb
198
- - spec/rails-3.2/app_root/config/environments/test.rb
199
- - spec/rails-3.2/app_root/config/initializers/backtrace_silencers.rb
200
- - spec/rails-3.2/app_root/config/initializers/inflections.rb
201
- - spec/rails-3.2/app_root/config/initializers/mime_types.rb
202
- - spec/rails-3.2/app_root/config/initializers/secret_token.rb
203
- - spec/rails-3.2/app_root/config/initializers/session_store.rb
204
- - spec/rails-3.2/app_root/config/routes.rb
205
- - spec/rails-3.2/app_root/lib/tasks/.gitkeep
206
- - spec/rails-3.2/app_root/log/.gitkeep
207
- - spec/rails-3.2/app_root/script/rails
208
- - spec/rails-3.2/rcov.opts
209
- - spec/rails-3.2/spec/spec_helper.rb
210
- - spec/rails-4.2/.rspec
211
- - spec/rails-4.2/Gemfile
212
- - spec/rails-4.2/Gemfile.lock
213
- - spec/rails-4.2/Rakefile
214
- - spec/rails-4.2/app_root/.gitignore
215
- - spec/rails-4.2/app_root/config/application.rb
216
- - spec/rails-4.2/app_root/config/boot.rb
217
- - spec/rails-4.2/app_root/config/database.yml
218
- - spec/rails-4.2/app_root/config/environment.rb
219
- - spec/rails-4.2/app_root/config/environments/test.rb
220
- - spec/rails-4.2/app_root/config/initializers/backtrace_silencers.rb
221
- - spec/rails-4.2/app_root/config/initializers/inflections.rb
222
- - spec/rails-4.2/app_root/config/initializers/mime_types.rb
223
- - spec/rails-4.2/app_root/config/initializers/secret_token.rb
224
- - spec/rails-4.2/app_root/config/initializers/session_store.rb
225
- - spec/rails-4.2/app_root/config/routes.rb
226
- - spec/rails-4.2/app_root/lib/tasks/.gitkeep
227
- - spec/rails-4.2/app_root/log/.gitkeep
228
- - spec/rails-4.2/app_root/script/rails
229
- - spec/rails-4.2/rcov.opts
230
- - spec/rails-4.2/spec/spec_helper.rb
231
- - spec/shared/app_root/app/controllers/application_controller.rb
232
- - spec/shared/app_root/app/helpers/application_helper.rb
233
- - spec/shared/app_root/app/models/.gitkeep
234
- - spec/shared/app_root/app/views/test/_test_erb.erb
235
- - spec/shared/app_root/app/views/test/_test_haml.haml
236
- - spec/shared/app_root/config/database.yml
237
- - spec/shared/app_root/db/migrate/.gitkeep
238
- - spec/shared/support/engine_preventing_angular_xss.rb
239
- - spec/shared/tests/erb_spec.rb
240
- - spec/shared/tests/haml_spec.rb
241
- - spec/shared/tests/safe_buffer_spec.rb
242
- has_rdoc:
104
+ specification_version: 4
105
+ summary: Patches rails_xss and Haml so AngularJS interpolations are auto-escaped in
106
+ unsafe strings.
107
+ test_files:
108
+ - spec/angular_xss/erb_spec.rb
109
+ - spec/angular_xss/haml_spec.rb
110
+ - spec/angular_xss/safe_buffer_spec.rb
111
+ - spec/spec_helper.rb
112
+ - spec/support/engine_preventing_angular_xss.rb
113
+ - spec/templates/_test_erb.erb
114
+ - spec/templates/_test_haml.haml