html-pipeline-linuxfr 0.14.24 → 0.14.25
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 387216d8cc610479af9b8d526de77d5b16451142
|
4
|
+
data.tar.gz: 8edf7468d472a59db8dfa019a4b8be63836d0916
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 9c52de20c15dee2b925eb5669d6e691c5d4da239df93aa6b1a11f9392f160d46acb8b18ff0489f2dfd372adc522ace4418401c77690396908b34b95e3be21222
|
7
|
+
data.tar.gz: f34ddd936efa19cb9ca5a544ddfd7b48dddfed667e0f0909960de7c42e81dcb90921a4e34e649179ff6c3508fec4d96e94204a99731fa2e3c39268a621a4d346
|
@@ -16,9 +16,9 @@ Gem::Specification.new do |gem|
|
|
16
16
|
gem.require_paths = ["lib"]
|
17
17
|
|
18
18
|
gem.add_dependency "nokogiri", "~> 1.6"
|
19
|
-
gem.add_dependency "redcarpet", "~> 3.
|
20
|
-
gem.add_dependency "pygments.rb", "~> 0.
|
21
|
-
gem.add_dependency "sanitize", "~>
|
19
|
+
gem.add_dependency "redcarpet", "~> 3.3"
|
20
|
+
gem.add_dependency "pygments.rb", "~> 0.6"
|
21
|
+
gem.add_dependency "sanitize", "~> 4.0"
|
22
22
|
gem.add_dependency "escape_utils", "~> 1.1"
|
23
23
|
gem.add_dependency "activesupport", "~> 4.2"
|
24
24
|
gem.add_dependency "patron", "~> 0.4"
|
@@ -14,6 +14,7 @@ module HTML
|
|
14
14
|
pipeline = HTML::Pipeline.new [
|
15
15
|
HTML::Pipeline::SVGTeX::PreFilter,
|
16
16
|
HTML::Pipeline::MarkdownFilter,
|
17
|
+
HTML::Pipeline::SanitizationFilter,
|
17
18
|
HTML::Pipeline::TableOfContentsFilter,
|
18
19
|
HTML::Pipeline::SVGTeX::PostFilter,
|
19
20
|
HTML::Pipeline::SyntaxHighlightFilter,
|
@@ -22,10 +22,17 @@ class HTML::Pipeline::SanitizationFilterTest < Test::Unit::TestCase
|
|
22
22
|
assert_no_match /style/, html
|
23
23
|
end
|
24
24
|
|
25
|
+
def test_removing_javascript_protocol
|
26
|
+
orig = %(<a href='javascript:alert(1)'>YO DAWG</a>)
|
27
|
+
html = SanitizationFilter.call(orig).to_s
|
28
|
+
assert_no_match /javascript/, html
|
29
|
+
assert_no_match /href/, html
|
30
|
+
end
|
31
|
+
|
25
32
|
def test_removing_script_event_handler_attributes
|
26
33
|
orig = %(<a onclick='javascript:alert(0)'>YO DAWG</a>)
|
27
34
|
html = SanitizationFilter.call(orig).to_s
|
28
|
-
assert_no_match /
|
35
|
+
assert_no_match /javascript/, html
|
29
36
|
assert_no_match /onclick/, html
|
30
37
|
end
|
31
38
|
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: html-pipeline-linuxfr
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.14.
|
4
|
+
version: 0.14.25
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Ryan Tomayko
|
@@ -10,7 +10,7 @@ authors:
|
|
10
10
|
autorequire:
|
11
11
|
bindir: bin
|
12
12
|
cert_chain: []
|
13
|
-
date: 2015-
|
13
|
+
date: 2015-08-12 00:00:00.000000000 Z
|
14
14
|
dependencies:
|
15
15
|
- !ruby/object:Gem::Dependency
|
16
16
|
name: nokogiri
|
@@ -32,42 +32,42 @@ dependencies:
|
|
32
32
|
requirements:
|
33
33
|
- - "~>"
|
34
34
|
- !ruby/object:Gem::Version
|
35
|
-
version: '3.
|
35
|
+
version: '3.3'
|
36
36
|
type: :runtime
|
37
37
|
prerelease: false
|
38
38
|
version_requirements: !ruby/object:Gem::Requirement
|
39
39
|
requirements:
|
40
40
|
- - "~>"
|
41
41
|
- !ruby/object:Gem::Version
|
42
|
-
version: '3.
|
42
|
+
version: '3.3'
|
43
43
|
- !ruby/object:Gem::Dependency
|
44
44
|
name: pygments.rb
|
45
45
|
requirement: !ruby/object:Gem::Requirement
|
46
46
|
requirements:
|
47
47
|
- - "~>"
|
48
48
|
- !ruby/object:Gem::Version
|
49
|
-
version: '0.
|
49
|
+
version: '0.6'
|
50
50
|
type: :runtime
|
51
51
|
prerelease: false
|
52
52
|
version_requirements: !ruby/object:Gem::Requirement
|
53
53
|
requirements:
|
54
54
|
- - "~>"
|
55
55
|
- !ruby/object:Gem::Version
|
56
|
-
version: '0.
|
56
|
+
version: '0.6'
|
57
57
|
- !ruby/object:Gem::Dependency
|
58
58
|
name: sanitize
|
59
59
|
requirement: !ruby/object:Gem::Requirement
|
60
60
|
requirements:
|
61
61
|
- - "~>"
|
62
62
|
- !ruby/object:Gem::Version
|
63
|
-
version: '
|
63
|
+
version: '4.0'
|
64
64
|
type: :runtime
|
65
65
|
prerelease: false
|
66
66
|
version_requirements: !ruby/object:Gem::Requirement
|
67
67
|
requirements:
|
68
68
|
- - "~>"
|
69
69
|
- !ruby/object:Gem::Version
|
70
|
-
version: '
|
70
|
+
version: '4.0'
|
71
71
|
- !ruby/object:Gem::Dependency
|
72
72
|
name: escape_utils
|
73
73
|
requirement: !ruby/object:Gem::Requirement
|