haml-edge 2.3.159 → 2.3.160

data/EDGE_GEM_VERSION

@@ -1 +1 @@
-2.3.159
+2.3.160

data/VERSION

@@ -1 +1 @@
-2.3.159
+2.3.160

data/lib/haml/helpers/action_view_extensions.rb

@@ -45,10 +45,10 @@ module Haml
       # @yield A block in which all input to `#haml_concat` is treated as raw.
       # @see Haml::Util#rails_xss_safe?
       def with_raw_haml_concat
-        @_haml_concat_raw = true
+        @_haml_concat_raw, old = true, @_haml_concat_raw
         yield
       ensure
-        @_haml_concat_raw = false
+        @_haml_concat_raw = old
       end
     end
   end

data/lib/haml/helpers/action_view_mods.rb

@@ -125,7 +125,7 @@ module ActionView
         @template_object.send :is_haml?
       end
 
-      unless defined?(ActionView::Helpers::ActiveRecordInstanceTag)
+      unless defined?(ActionView::Helpers) && defined?(ActionView::Helpers::ActiveRecordInstanceTag)
         alias_method :content_tag_without_haml, :content_tag
         alias_method :content_tag, :content_tag_with_haml
       end

data/lib/haml/helpers.rb

@@ -539,12 +539,12 @@ MESSAGE
     # @yield A block in which the given buffer should be used
     def with_haml_buffer(buffer)
       @haml_buffer, old_buffer = buffer, @haml_buffer
-      old_buffer.active, was_active = false, old_buffer.active? if old_buffer
-      @haml_buffer.active = true
+      old_buffer.active, old_was_active = false, old_buffer.active? if old_buffer
+      @haml_buffer.active, was_active = true, @haml_buffer.active?
       yield
     ensure
-      @haml_buffer.active = false
-      old_buffer.active = was_active if old_buffer
+      @haml_buffer.active = was_active
+      old_buffer.active = old_was_active if old_buffer
       @haml_buffer = old_buffer
     end
 

data/lib/haml/template/plugin.rb

@@ -3,8 +3,11 @@
 
 module Haml
   class Plugin < Haml::Util.av_template_class(:Handler)
-    if defined?(ActionView::TemplateHandlers::Compilable) ||
-        defined?(ActionView::Template::Handlers::Compilable)
+    if (defined?(ActionView::TemplateHandlers) &&
+        defined?(ActionView::TemplateHandlers::Compilable)) ||
+       (defined?(ActionView::Template) &&
+        defined?(ActionView::Template::Handlers) &&
+        defined?(ActionView::Template::Handlers::Compilable))
       include Haml::Util.av_template_class(:Handlers)::Compilable
     end
 

data/lib/haml/template.rb

@@ -46,7 +46,8 @@ end
 # Decide how we want to load Haml into Rails.
 # Patching was necessary for versions <= 2.0.1,
 # but we can make it a normal handler for higher versions.
-if defined?(ActionView::TemplateHandler) || defined?(ActionView::Template::Handler)
+if defined?(ActionView::TemplateHandler) ||
+    (defined?(ActionView::Template) && defined?(ActionView::Template::Handler))
   require 'haml/template/plugin'
 else
   require 'haml/template/patch'

data/lib/sass/files.rb

@@ -98,7 +98,7 @@ END
         return unless f.readline("\n").strip == sha
         return Marshal.load(f.read)
       end
-    rescue TypeError, ArgumentError => e
+    rescue EOFError, TypeError, ArgumentError => e
       warn "Warning. Error encountered while reading cache #{compiled_filename}: #{e}"
     end
 

data/lib/sass/plugin/rack.rb

@@ -48,12 +48,12 @@ module Sass
       # This is automatically done once the Rack plugin is activated.
       # This is done so that the stylesheets aren't checked twice for each request.
       def self.disable_native_plugin!
-        if defined?(Merb::Rack::Application) &&
+        if defined?(Merb::Rack) && defined?(Merb::Rack::Application) &&
             Haml::Util.has?(:instance_method, Merb::Rack::Application, :call_without_sass)
           Merb::Rack::Application.instance_eval {alias_method :call, :call_without_sass}
         end
 
-        if defined?(ActionDispatch::Callbacks.to_prepare)
+        if defined?(ActionDispatch::Callbacks) && defined?(ActionDispatch::Callbacks.to_prepare)
           ActionDispatch::Callbacks.skip_callback(:prepare, :__sass_process)
         elsif defined?(ActionController::Base) &&
             Haml::Util.has?(:instance_method, ActionController::Base, :sass_old_process)

data/lib/sass/plugin/rails.rb

@@ -7,11 +7,12 @@ unless defined?(Sass::RAILS_LOADED)
                               :always_check      => Haml::Util.rails_env != "production",
                               :full_exception    => Haml::Util.rails_env != "production")
 
-  if defined?(Rails.configuration.middleware)
+  if defined?(Rails.configuration) && defined?(Rails.configuration.middleware)
     # Rails >= 3.0
     require 'sass/plugin/rack'
     Rails.configuration.middleware.use(Sass::Plugin::Rack)
-  elsif defined?(ActionController::Dispatcher.middleware)
+  elsif defined?(ActionController::Dispatcher) &&
+      defined?(ActionController::Dispatcher.middleware)
     # Rails >= 2.3
     require 'sass/plugin/rack'
     ActionController::Dispatcher.middleware.use(Sass::Plugin::Rack)

data/test/haml/template_test.rb

@@ -309,6 +309,20 @@ END
 
     ## Regression
 
+    def test_xss_protection_with_nested_haml_tag
+      assert_equal(<<HTML, render(<<HAML, :action_view))
+<div>
+  <ul>
+    <li>Content!</li>
+  </ul>
+</div>
+HTML
+- haml_tag :div do
+  - haml_tag :ul do
+    - haml_tag :li, "Content!"
+HAML
+    end
+
     def test_xss_protection_with_form_for
       assert_equal(<<HTML, render(<<HAML, :action_view))
 <form action="" method="post">

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification 
 name: haml-edge
 version: !ruby/object:Gem::Version 
-  version: 2.3.159
+  version: 2.3.160
 platform: ruby
 authors: 
 - Nathan Weizenbaum