RubyGems - antisamy - Versions diffs - 0.3.0 → 0.3.1 - Mend

antisamy 0.3.0 → 0.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

data/lib/antisamy/policy.rb +163 -175
metadata +18 -18

data/lib/antisamy/policy.rb CHANGED

@@ -39,20 +39,9 @@ module AntiSamy
     PRESERVE_COMMENTS = "preserveComments"
     ON_UNKNOWN_TAG = "onUnknownTag"
     MAX_SHEETS = "maxStyleSheetImports"
     # Class method to fetch the schema
     def self.schema
-      data = StringIO.new
-      File.open(__FILE__) do |f|
-        begin
-          line = f.gets
-        end until line.match(/^__END__$/)
-        while line = f.gets
-          data << line
-        end
-      end
-      data.rewind
-      data.read
+	  XSD
     end
     # Create a policy object.
@@ -411,167 +400,166 @@ module AntiSamy
         @css_rules[name.downcase] = prop
       end
     end
-  end
-end
-__END__
-<?xml version="1.0" encoding="UTF-8"?>
-<xsd:schema
-  xmlns:xsd="http://www.w3.org/2001/XMLSchema">
-	<xsd:element name="anti-samy-rules">
-		<xsd:complexType>
-		<xsd:sequence>
-			<xsd:element name="directives" type="Directives" maxOccurs="1" minOccurs="1"/>
-			<xsd:element name="common-regexps" type="CommonRegexps" maxOccurs="1" minOccurs="1"/>
-			<xsd:element name="common-attributes" type="AttributeList" maxOccurs="1" minOccurs="1"/>
-			<xsd:element name="global-tag-attributes" type="AttributeList" maxOccurs="1" minOccurs="1"/>
-			<xsd:element name="tags-to-encode" type="TagsToEncodeList" minOccurs="0" maxOccurs="1"/>
-			<xsd:element name="tag-rules" type="TagRules" minOccurs="1" maxOccurs="1"/>
-			<xsd:element name="css-rules" type="CSSRules" minOccurs="1" maxOccurs="1"/>
-			<xsd:element name="allowed-empty-tags" type="AllowedEmptyTags" minOccurs="0" maxOccurs="1"/>
-		</xsd:sequence>
-		</xsd:complexType>
-	</xsd:element>
-	<xsd:complexType name="Directives">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="directive" type="Directive" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="Directive">
-		<xsd:attribute name="name" use="required">
-		<xsd:simpleType>
-      <xsd:restriction base="xsd:string">
-        <xsd:enumeration value="omitXmlDeclaration"/>
-        <xsd:enumeration value="omitDoctypeDeclaration"/>
-        <xsd:enumeration value="maxInputSize"/>
-        <xsd:enumeration value="useXHTML"/>
-        <xsd:enumeration value="embedStyleSheets"/>
-        <xsd:enumeration value="maxStyleSheetImports"/>
-        <xsd:enumeration value="connectionTimeout"/>
-        <xsd:enumeration value="nofollowAnchors"/>
-        <xsd:enumeration value="validateParamAsEmbed"/>
-        <xsd:enumeration value="preserveComments"/>
-        <xsd:enumeration value="preserveSpace"/>
-        <xsd:enumeration value="onUnknownTag"/>
-        <xsd:enumeration value="formatOutput"/>
-      </xsd:restriction>
-    </xsd:simpleType>
-		</xsd:attribute>
-		<xsd:attribute name="value" use="required"/>
-	</xsd:complexType>
-	<xsd:complexType name="CommonRegexps">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="regexp" type="RegExp" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="AttributeList">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="attribute" type="Attribute" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="TagsToEncodeList">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="tag" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="TagRules">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="tag" type="Tag" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="Tag">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="attribute" type="Attribute" minOccurs="0" />
-		</xsd:sequence>
-		<xsd:attribute name="name" use="required"/>
-		<xsd:attribute name="action" use="required">
-		  <xsd:simpleType>
-			<xsd:restriction base="xsd:string">
-				<xsd:enumeration value="validate"/>
-				<xsd:enumeration value="truncate"/>
-				<xsd:enumeration value="remove"/>
-				<xsd:enumeration value="filter"/>
-				<xsd:enumeration value="encode"/>
-			</xsd:restriction>
-		  </xsd:simpleType>
-		</xsd:attribute>
-	</xsd:complexType>
-	<xsd:complexType name="Attribute">
-		<xsd:sequence>
-			<xsd:element name="regexp-list" type="RegexpList" minOccurs="0"/>
-			<xsd:element name="literal-list" type="LiteralList" minOccurs="0"/>
-		</xsd:sequence>
-		<xsd:attribute name="name" use="required"/>
-		<xsd:attribute name="description"/>
-		<xsd:attribute name="onInvalid">
-		  <xsd:simpleType>
-        <xsd:restriction base="xsd:string">
-          <xsd:enumeration value="removeTag"/>
-          <xsd:enumeration value="filterTag"/>
-          <xsd:enumeration value="encodeTag"/>
-          <xsd:enumeration value="removeAttribute"/>
-        </xsd:restriction>
-      </xsd:simpleType>
-		</xsd:attribute>
-	</xsd:complexType>
-	<xsd:complexType name="RegexpList">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="regexp" type="RegExp" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="RegExp">
-		<xsd:attribute name="name" type="xsd:string"/>
-		<xsd:attribute name="value" type="xsd:string"/>
-	</xsd:complexType>
-	<xsd:complexType name="LiteralList">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="literal" type="Literal" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="Literal">
-		<xsd:attribute name="value" type="xsd:string"/>
-	</xsd:complexType>
-	<xsd:complexType name="CSSRules">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="property" type="Property" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="Property">
-		<xsd:sequence>
-			<xsd:element name="category-list" type="CategoryList" minOccurs="0"/>
-			<xsd:element name="literal-list" type="LiteralList" minOccurs="0"/>
-			<xsd:element name="regexp-list" type="RegexpList" minOccurs="0"/>
-			<xsd:element name="shorthand-list" type="ShorthandList" minOccurs="0"/>
-		</xsd:sequence>
-		<xsd:attribute name="name" type="xsd:string" use="required"/>
-		<xsd:attribute name="default" type="xsd:string"/>
-		<xsd:attribute name="description" type="xsd:string"/>
-	</xsd:complexType>
-	<xsd:complexType name="ShorthandList">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="shorthand" type="Shorthand" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="Shorthand">
-		<xsd:attribute name="name" type="xsd:string" use="required"/>
-	</xsd:complexType>
-	<xsd:complexType name="CategoryList">
-		<xsd:sequence maxOccurs="unbounded">
-			<xsd:element name="category" type="Category" minOccurs="0"/>
-		</xsd:sequence>
-	</xsd:complexType>
-	<xsd:complexType name="Category">
-		<xsd:attribute name="value" type="xsd:string" use="required"/>
-	</xsd:complexType>
-	<xsd:complexType name="Entity">
-		<xsd:attribute name="name" type="xsd:string" use="required"/>
-		<xsd:attribute name="cdata" type="xsd:string" use="required"/>
-	</xsd:complexType>
-	<xsd:complexType name="AllowedEmptyTags">
-        <xsd:sequence>
-            <xsd:element name="literal-list" type="LiteralList" minOccurs="1"/>
-        </xsd:sequence>
-    </xsd:complexType>
+		XSD = <<-SHEET
+	<?xml version="1.0" encoding="UTF-8"?>
+		<xsd:schema
+		  xmlns:xsd="http://www.w3.org/2001/XMLSchema">
+			<xsd:element name="anti-samy-rules">
+				<xsd:complexType>
+				<xsd:sequence>
+					<xsd:element name="directives" type="Directives" maxOccurs="1" minOccurs="1"/>
+					<xsd:element name="common-regexps" type="CommonRegexps" maxOccurs="1" minOccurs="1"/>
+					<xsd:element name="common-attributes" type="AttributeList" maxOccurs="1" minOccurs="1"/>
+					<xsd:element name="global-tag-attributes" type="AttributeList" maxOccurs="1" minOccurs="1"/>
+					<xsd:element name="tags-to-encode" type="TagsToEncodeList" minOccurs="0" maxOccurs="1"/>
+					<xsd:element name="tag-rules" type="TagRules" minOccurs="1" maxOccurs="1"/>
+					<xsd:element name="css-rules" type="CSSRules" minOccurs="1" maxOccurs="1"/>
+					<xsd:element name="allowed-empty-tags" type="AllowedEmptyTags" minOccurs="0" maxOccurs="1"/>
+				</xsd:sequence>
+				</xsd:complexType>
+			</xsd:element>
+			<xsd:complexType name="Directives">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="directive" type="Directive" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="Directive">
+				<xsd:attribute name="name" use="required">
+				<xsd:simpleType>
+			  <xsd:restriction base="xsd:string">
+				<xsd:enumeration value="omitXmlDeclaration"/>
+				<xsd:enumeration value="omitDoctypeDeclaration"/>
+				<xsd:enumeration value="maxInputSize"/>
+				<xsd:enumeration value="useXHTML"/>
+				<xsd:enumeration value="embedStyleSheets"/>
+				<xsd:enumeration value="maxStyleSheetImports"/>
+				<xsd:enumeration value="connectionTimeout"/>
+				<xsd:enumeration value="nofollowAnchors"/>
+				<xsd:enumeration value="validateParamAsEmbed"/>
+				<xsd:enumeration value="preserveComments"/>
+				<xsd:enumeration value="preserveSpace"/>
+				<xsd:enumeration value="onUnknownTag"/>
+				<xsd:enumeration value="formatOutput"/>
+			  </xsd:restriction>
+			</xsd:simpleType>
+				</xsd:attribute>
+				<xsd:attribute name="value" use="required"/>
+			</xsd:complexType>
+			<xsd:complexType name="CommonRegexps">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="regexp" type="RegExp" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="AttributeList">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="attribute" type="Attribute" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="TagsToEncodeList">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="tag" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="TagRules">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="tag" type="Tag" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="Tag">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="attribute" type="Attribute" minOccurs="0" />
+				</xsd:sequence>
+				<xsd:attribute name="name" use="required"/>
+				<xsd:attribute name="action" use="required">
+				  <xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="validate"/>
+						<xsd:enumeration value="truncate"/>
+						<xsd:enumeration value="remove"/>
+						<xsd:enumeration value="filter"/>
+						<xsd:enumeration value="encode"/>
+					</xsd:restriction>
+				  </xsd:simpleType>
+				</xsd:attribute>
+			</xsd:complexType>
+			<xsd:complexType name="Attribute">
+				<xsd:sequence>
+					<xsd:element name="regexp-list" type="RegexpList" minOccurs="0"/>
+					<xsd:element name="literal-list" type="LiteralList" minOccurs="0"/>
+				</xsd:sequence>
+				<xsd:attribute name="name" use="required"/>
+				<xsd:attribute name="description"/>
+				<xsd:attribute name="onInvalid">
+				  <xsd:simpleType>
+				<xsd:restriction base="xsd:string">
+				  <xsd:enumeration value="removeTag"/>
+				  <xsd:enumeration value="filterTag"/>
+				  <xsd:enumeration value="encodeTag"/>
+				  <xsd:enumeration value="removeAttribute"/>
+				</xsd:restriction>
+			  </xsd:simpleType>
+				</xsd:attribute>
+			</xsd:complexType>
+			<xsd:complexType name="RegexpList">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="regexp" type="RegExp" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="RegExp">
+				<xsd:attribute name="name" type="xsd:string"/>
+				<xsd:attribute name="value" type="xsd:string"/>
+			</xsd:complexType>
+			<xsd:complexType name="LiteralList">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="literal" type="Literal" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="Literal">
+				<xsd:attribute name="value" type="xsd:string"/>
+			</xsd:complexType>
+			<xsd:complexType name="CSSRules">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="property" type="Property" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="Property">
+				<xsd:sequence>
+					<xsd:element name="category-list" type="CategoryList" minOccurs="0"/>
+					<xsd:element name="literal-list" type="LiteralList" minOccurs="0"/>
+					<xsd:element name="regexp-list" type="RegexpList" minOccurs="0"/>
+					<xsd:element name="shorthand-list" type="ShorthandList" minOccurs="0"/>
+				</xsd:sequence>
+				<xsd:attribute name="name" type="xsd:string" use="required"/>
+				<xsd:attribute name="default" type="xsd:string"/>
+				<xsd:attribute name="description" type="xsd:string"/>
+			</xsd:complexType>
+			<xsd:complexType name="ShorthandList">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="shorthand" type="Shorthand" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="Shorthand">
+				<xsd:attribute name="name" type="xsd:string" use="required"/>
+			</xsd:complexType>
+			<xsd:complexType name="CategoryList">
+				<xsd:sequence maxOccurs="unbounded">
+					<xsd:element name="category" type="Category" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:complexType>
+			<xsd:complexType name="Category">
+				<xsd:attribute name="value" type="xsd:string" use="required"/>
+			</xsd:complexType>
+			<xsd:complexType name="Entity">
+				<xsd:attribute name="name" type="xsd:string" use="required"/>
+				<xsd:attribute name="cdata" type="xsd:string" use="required"/>
+			</xsd:complexType>
+			<xsd:complexType name="AllowedEmptyTags">
+				<xsd:sequence>
+					<xsd:element name="literal-list" type="LiteralList" minOccurs="1"/>
+				</xsd:sequence>
+			</xsd:complexType>
-</xsd:schema>
+		</xsd:schema>
+	SHEET
+ end
+end

metadata CHANGED

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: antisamy
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.3.1
   prerelease:
 platform: ruby
 authors:
@@ -13,7 +13,7 @@ date: 2011-12-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rspec
-  requirement: &23758128 !ruby/object:Gem::Requirement
+  requirement: &24191592 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -21,10 +21,10 @@ dependencies:
         version: 2.3.0
   type: :development
   prerelease: false
-  version_requirements: *23758128
+  version_requirements: *24191592
 - !ruby/object:Gem::Dependency
   name: yard
-  requirement: &23757420 !ruby/object:Gem::Requirement
+  requirement: &24191232 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -32,10 +32,10 @@ dependencies:
         version: 0.6.0
   type: :development
   prerelease: false
-  version_requirements: *23757420
+  version_requirements: *24191232
 - !ruby/object:Gem::Dependency
   name: bundler
-  requirement: &23757036 !ruby/object:Gem::Requirement
+  requirement: &24190920 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -43,10 +43,10 @@ dependencies:
         version: 1.0.0
   type: :development
   prerelease: false
-  version_requirements: *23757036
+  version_requirements: *24190920
 - !ruby/object:Gem::Dependency
   name: jeweler
-  requirement: &23756388 !ruby/object:Gem::Requirement
+  requirement: &24190356 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -54,10 +54,10 @@ dependencies:
         version: 1.5.2
   type: :development
   prerelease: false
-  version_requirements: *23756388
+  version_requirements: *24190356
 - !ruby/object:Gem::Dependency
   name: rcov
-  requirement: &23755860 !ruby/object:Gem::Requirement
+  requirement: &24189564 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -65,10 +65,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *23755860
+  version_requirements: *24189564
 - !ruby/object:Gem::Dependency
   name: nokogiri
-  requirement: &23755200 !ruby/object:Gem::Requirement
+  requirement: &24188952 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -76,10 +76,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *23755200
+  version_requirements: *24188952
 - !ruby/object:Gem::Dependency
   name: nokogiri
-  requirement: &23754468 !ruby/object:Gem::Requirement
+  requirement: &24188508 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -87,10 +87,10 @@ dependencies:
         version: '0'
   type: :runtime
   prerelease: false
-  version_requirements: *23754468
+  version_requirements: *24188508
 - !ruby/object:Gem::Dependency
   name: nokogiri
-  requirement: &23753832 !ruby/object:Gem::Requirement
+  requirement: &24188100 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -98,7 +98,7 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *23753832
+  version_requirements: *24188100
 description: ! "\n    AntiSamy is a library to clean user-supplied HTML/CSS. This
   gem is a port of the anti-samy framework created for OWASP (http://www.owasp.org/index.php/Category:OWASP_AntiSamy_Project)\n
   \   AntiSamy works by using a policy to removed any dangerous input you specify
@@ -176,7 +176,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: -447607437
+      hash: -556336287
 required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
   requirements: