html-pipeline 2.14.3 → 3.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1b77953747de81d288810b41b16c299b990dd813227a4576875d82f8f060c74c
-  data.tar.gz: 72c30128725915cf4c88f4c12564c7aa07a4587def81cff7b29584d1c5b48a5e
+  metadata.gz: 248d46dd59af87c501118e123ac1ffa5e16447942ca892a9b4985e0fa43c6548
+  data.tar.gz: 48a75cb97c189f4da648df25121e96efd4a9a278081c6ddd75c129c86f4fcbdd
 SHA512:
-  metadata.gz: 67ceedf941f4147087a88ea7801382126a6a6eb5af8dc9cd4d7ff34f6b5886371593fb8887dc17ba2f38a33d7bd279c9be4a4aa9508852575b384955a43e9625
-  data.tar.gz: ce6457797b0d2a3acd392805967c7bb0de40e82398442de88d7ba5f1e6c087dd1b3eeea97dd37ec43f1f3d4cc2e76fc3b05598f823a7399886279af01c4dec3d
+  metadata.gz: f2fb4d1b8097e9c0af8eb9621701484a5701a12183fcabe13729f19f42f4648bfebf4d76830c90611d734ff5d9d93b5253f8a269b011cac0b5c38aa7e48bfffc
+  data.tar.gz: e0721ac24b36925bf40b63fbae758f7c649b36c501bcb0769219551500f586d2c3643922be3588aaf65e6393dd064bf382a64ade7f31cebba3d7a2a58b6c92bc

data/.github/FUNDING.yml

@@ -1,4 +1,12 @@
+# These are supported funding model platforms
+
 github: gjtorikian
-patreon: gjtorikian
-open_collective: garen-torikian
-issuehunt: gjtorikian
+# patreon: gjtorikian
+# open_collective: garen-torikian
+#ko_fi: # Replace with a single Ko-fi username
+#tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel
+#community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry
+#liberapay: # Replace with a single Liberapay username
+# issuehunt: gjtorikian
+#otechie: # Replace with a single Otechie username
+#custom: # Replace with up to 4 custom sponsorship URLs e.g., ['link1', 'link2']

data/.github/dependabot.yml

@@ -0,0 +1,27 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: weekly
+      day: monday
+      time: "09:00"
+      timezone: "Etc/UTC"
+    groups:
+      github-actions:
+        patterns:
+          - "*"
+    open-pull-requests-limit: 10
+
+  - package-ecosystem: bundler
+    directory: "/"
+    schedule:
+      interval: weekly
+      day: monday
+      time: "09:00"
+      timezone: "Etc/UTC"
+    open-pull-requests-limit: 10
+    groups:
+      bundler-dependencies:
+        patterns:
+          - "*"

data/.github/workflows/automerge.yml

@@ -0,0 +1,13 @@
+name: PR auto-{approve,merge}
+
+on:
+  pull_request_target:
+
+permissions:
+  pull-requests: write
+  contents: write
+
+jobs:
+  dependabot:
+    uses: yettoapp/actions/.github/workflows/automerge_dependabot.yml@main
+    secrets: inherit

data/.github/workflows/ci.yml

@@ -0,0 +1,22 @@
+name: CI
+
+on:
+  pull_request:
+
+permissions:
+  contents: read
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Ruby
+        uses: yettoapp/actions/setup-languages@main
+        with:
+          ruby: true
+
+      - name: Run tests
+        run: bundle exec rake test

data/.github/workflows/lint.yml

@@ -0,0 +1,23 @@
+name: Linting
+
+on:
+  pull_request:
+    paths:
+      - "**/*.rb"
+
+permissions:
+  contents: read
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Ruby
+        uses: yettoapp/actions/setup-languages@main
+        with:
+          ruby: true
+
+      - name: Rubocop
+        run: bundle exec rake rubocop

data/.github/workflows/publish.yml

@@ -0,0 +1,19 @@
+name: Release
+
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+    paths:
+      - "lib/html_pipeline/version.rb"
+
+jobs:
+  ruby:
+    uses: yettoapp/actions/.github/workflows/ruby_gem_release.yml@main
+    secrets:
+      rubygems_api_key: ${{ secrets.RUBYGEMS_API_BOT_KEY }}
+      gh_token: ${{ secrets.PUBLIC_PUSH_TO_PROTECTED_BRANCH }}
+    with:
+      gem_name: html-pipeline
+      version_filepath: lib/html_pipeline/version.rb

data/.rubocop.yml

@@ -0,0 +1,17 @@
+inherit_gem:
+  rubocop-standard:
+    - config/default.yml
+    - config/minitest.yml
+
+inherit_mode:
+  merge:
+    - Exclude
+
+AllCops:
+  Exclude:
+    - test/progit/**/*
+    - "pkg/**/*"
+    - "ext/**/*"
+    - "vendor/**/*"
+    - "tmp/**/*"
+    - "test/progit/**/*"

data/.ruby-version

@@ -0,0 +1 @@
+3.2.1

data/.vscode/settings.json

@@ -0,0 +1,8 @@
+{
+    "[markdown]": {
+        "editor.defaultFormatter": "esbenp.prettier-vscode"
+    },
+    "[ruby]": {
+        "editor.defaultFormatter": "Shopify.ruby-lsp"
+    }
+}

data/CHANGELOG.md

@@ -1,8 +1,88 @@
+## [v3.0.0.pre6] - 16-08-2023
+null
 # Changelog
 
-## [Unreleased](https://github.com/gjtorikian/html-pipeline/tree/HEAD)
+## [v3.0.0.pre5](https://github.com/gjtorikian/html-pipeline/tree/v3.0.0.pre5) (2023-06-05)
 
-[Full Changelog](https://github.com/gjtorikian/html-pipeline/compare/v2.14.2...HEAD)
+[Full Changelog](https://github.com/gjtorikian/html-pipeline/compare/v3.0.0.pre4...v3.0.0.pre5)
+
+## [v3.0.0.pre4](https://github.com/gjtorikian/html-pipeline/tree/v3.0.0.pre4) (2023-06-05)
+
+[Full Changelog](https://github.com/gjtorikian/html-pipeline/compare/v3.0.0.pre3...v3.0.0.pre4)
+
+**Closed issues:**
+
+- Suggestion: add more tags to the sanitization filter [\#378](https://github.com/gjtorikian/html-pipeline/issues/378)
+- v3 gemoji, gemojione seem required - is there a way to not require at puma startup? [\#376](https://github.com/gjtorikian/html-pipeline/issues/376)
+- v3: Question regarding requiring a ConvertFilter if there are NodeFilters [\#374](https://github.com/gjtorikian/html-pipeline/issues/374)
+- alt Attribute for Emoji Images Should Use Unicode [\#272](https://github.com/gjtorikian/html-pipeline/issues/272)
+
+**Merged pull requests:**
+
+- Update gemoji requirement from ~\> 3.0 to ~\> 4.1 [\#382](https://github.com/gjtorikian/html-pipeline/pull/382) ([dependabot[bot]](https://github.com/apps/dependabot))
+- Update rouge requirement from ~\> 3.1 to ~\> 4.1 [\#381](https://github.com/gjtorikian/html-pipeline/pull/381) ([dependabot[bot]](https://github.com/apps/dependabot))
+- Add the AssetProxyFilter [\#379](https://github.com/gjtorikian/html-pipeline/pull/379) ([digitalmoksha](https://github.com/digitalmoksha))
+- Update selma requirement from ~\> 0.0.1 to \>= 0.0.1, \< 0.2.0 [\#377](https://github.com/gjtorikian/html-pipeline/pull/377) ([dependabot[bot]](https://github.com/apps/dependabot))
+
+## [v3.0.0.pre3](https://github.com/gjtorikian/html-pipeline/tree/v3.0.0.pre3) (2023-02-15)
+
+[Full Changelog](https://github.com/gjtorikian/html-pipeline/compare/v3.0.0.pre2...v3.0.0.pre3)
+
+**Merged pull requests:**
+
+- req convert\_filter if `text/node`filter present [\#375](https://github.com/gjtorikian/html-pipeline/pull/375) ([gjtorikian](https://github.com/gjtorikian))
+
+## [v3.0.0.pre2](https://github.com/gjtorikian/html-pipeline/tree/v3.0.0.pre2) (2023-01-26)
+
+[Full Changelog](https://github.com/gjtorikian/html-pipeline/compare/v3.0.0.pre1...v3.0.0.pre2)
+
+**Closed issues:**
+
+- Indicate a version for activesupport that has support/receives security patches \(\>= 6?\) [\#367](https://github.com/gjtorikian/html-pipeline/issues/367)
+- Add MathML elements to whitelist [\#336](https://github.com/gjtorikian/html-pipeline/issues/336)
+- Feature request: add safe semantic HTML tags to default whitelist [\#312](https://github.com/gjtorikian/html-pipeline/issues/312)
+- Allow float: left|right and clear: left|right|both in sanitation [\#302](https://github.com/gjtorikian/html-pipeline/issues/302)
+- Open link in new tab option [\#266](https://github.com/gjtorikian/html-pipeline/issues/266)
+- Consider allowing LINK and META elements in HTML [\#261](https://github.com/gjtorikian/html-pipeline/issues/261)
+- Allow SVG elements in whitelist [\#251](https://github.com/gjtorikian/html-pipeline/issues/251)
+- Allow RDFa 1.1 \(Lite\) attributes [\#249](https://github.com/gjtorikian/html-pipeline/issues/249)
+- What’s the point of allowing the accept-charset attribute in the sanitization filter ? [\#218](https://github.com/gjtorikian/html-pipeline/issues/218)
+- Use gemojione instead of gemoji [\#200](https://github.com/gjtorikian/html-pipeline/issues/200)
+- Link schema not used with \<a\> markup : print them directly [\#194](https://github.com/gjtorikian/html-pipeline/issues/194)
+
+**Merged pull requests:**
+
+- Use emoji from commonmarker [\#373](https://github.com/gjtorikian/html-pipeline/pull/373) ([gjtorikian](https://github.com/gjtorikian))
+
+## [v3.0.0.pre1](https://github.com/gjtorikian/html-pipeline/tree/v3.0.0.pre1) (2022-12-30)
+
+[Full Changelog](https://github.com/gjtorikian/html-pipeline/compare/v2.14.3...v3.0.0.pre1)
+
+**Closed issues:**
+
+- Allow `loading` attribute on images [\#359](https://github.com/gjtorikian/html-pipeline/issues/359)
+- Allow picture tag in sanitation [\#352](https://github.com/gjtorikian/html-pipeline/issues/352)
+- V3 ideas [\#350](https://github.com/gjtorikian/html-pipeline/issues/350)
+- Invalid and missing HTML elements in the sanatizer [\#342](https://github.com/gjtorikian/html-pipeline/issues/342)
+- Cellpadding & Cellspacing are not supported in HTML5. [\#303](https://github.com/gjtorikian/html-pipeline/issues/303)
+
+**Merged pull requests:**
+
+- Drop SyntaxHighlightFilter [\#372](https://github.com/gjtorikian/html-pipeline/pull/372) ([gjtorikian](https://github.com/gjtorikian))
+- Close sanitization-related issues [\#371](https://github.com/gjtorikian/html-pipeline/pull/371) ([gjtorikian](https://github.com/gjtorikian))
+- Update Selma signatures [\#370](https://github.com/gjtorikian/html-pipeline/pull/370) ([gjtorikian](https://github.com/gjtorikian))
+- You shall pass [\#369](https://github.com/gjtorikian/html-pipeline/pull/369) ([gjtorikian](https://github.com/gjtorikian))
+- Migrate from Nokogiri to Selma [\#368](https://github.com/gjtorikian/html-pipeline/pull/368) ([gjtorikian](https://github.com/gjtorikian))
+- Split filters up [\#360](https://github.com/gjtorikian/html-pipeline/pull/360) ([gjtorikian](https://github.com/gjtorikian))
+- Support multiple dependencies per filter [\#351](https://github.com/gjtorikian/html-pipeline/pull/351) ([gjtorikian](https://github.com/gjtorikian))
+- Add Rubocop [\#349](https://github.com/gjtorikian/html-pipeline/pull/349) ([gjtorikian](https://github.com/gjtorikian))
+- add truffleruby-head [\#348](https://github.com/gjtorikian/html-pipeline/pull/348) ([gogainda](https://github.com/gogainda))
+- V3 Release [\#347](https://github.com/gjtorikian/html-pipeline/pull/347) ([gjtorikian](https://github.com/gjtorikian))
+- Switch to GitHub Actions [\#346](https://github.com/gjtorikian/html-pipeline/pull/346) ([gjtorikian](https://github.com/gjtorikian))
+
+## [v2.14.3](https://github.com/gjtorikian/html-pipeline/tree/v2.14.3) (2022-10-14)
+
+[Full Changelog](https://github.com/gjtorikian/html-pipeline/compare/v2.14.2...v2.14.3)
 
 **Closed issues:**
 

data/Gemfile

@@ -1,26 +1,42 @@
 # frozen_string_literal: true
 
-source 'https://rubygems.org'
+source "https://rubygems.org"
 
 # Specify your gem's dependencies in html-pipeline.gemspec
 gemspec
 
+gem "awesome_print"
+
+gem "rubocop"
+gem "rubocop-standard"
+
+gem "github_changelog_generator", "~> 1.16"
+
+gem "sorbet-runtime"
+
+group :development, :test do
+  gem "amazing_print"
+  gem "debug"
+end
+
 group :development do
-  gem 'appraisal'
-  gem 'bundler'
-  gem 'rake'
+  gem "tapioca", require: false
+  gem "sorbet"
+  gem "bundler"
+  gem "rake"
 end
 
 group :test do
-  gem 'commonmarker', '~> 0.16', require: false
-  gem 'email_reply_parser', '~> 0.5', require: false
-  gem 'gemoji', '~> 2.0', require: false
-  gem 'minitest'
-  gem 'RedCloth',           '~> 4.2.9', require: false
-  gem 'rinku',              '~> 1.7',   require: false
-  gem 'sanitize',           '~> 4.6', require: false
-
-  gem 'escape_utils', '~> 1.0', require: false
-  gem 'rouge', '~> 3.1', require: false
-  gem 'minitest-focus', '~> 1.1'
+  gem "commonmarker", "~> 1.0.0.pre7", require: false
+  gem "gemoji", "~> 4.1", require: false
+  gem "gemojione", "~> 4.3", require: false
+
+  gem "minitest"
+
+  gem "minitest-bisect", "~> 1.6"
+
+  gem "nokogiri", "~> 1.13"
+
+  gem "minitest-focus", "~> 1.1"
+  gem "rouge", "~> 4.1", require: false
 end

data/{LICENSE → LICENSE.txt}

@@ -1,4 +1,4 @@
-Copyright (c) 2012 GitHub Inc. and Jerry Cheung
+Copyright (c) 2023 Garen Torikian
 
 MIT License
 
@@ -19,4 +19,4 @@ MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
 NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
 LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
 OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
-WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.