RubyGems - phlex - Versions diffs - 1.7.0 → 1.7.1 - Mend

phlex 1.7.0 → 1.7.1

This version of phlex might be problematic. Click here for more details.

Files changed (5) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5c0002c77419906adab684bd6e3bcb0ad2d5b7084aeb4e62f89c4f15a1da6001
-  data.tar.gz: dea42d460e9cce5f3a4001dbe5d6cbfd155f2bafe725ed0a21f3bfc9bb050a39
+  metadata.gz: 43c71026cecf29024dff9fd7d978bc25c5e4abadce4bef2c9a70f7e9f307d591
+  data.tar.gz: 627c81fc57dc871e8adeadf65246f68fbff2cc3f2c2c821a319b48a6f2795a00
 SHA512:
-  metadata.gz: 22d4b19c21a14a60f8ff8cb2418bea2d553768b219cc9d491b44181580af17f4aeb804e0e4e0a875f959c74ab96b556f95fc5958e5ff4423f893cd7f07498a99
-  data.tar.gz: 8512284569af79d553d74e16539292f1e68d10aad9224f0c1ec9698ef6d38c025bf20aa3a6c8b0db3533e21c03978980472d7c016148a9605e6fbf72caa0f0fe
+  metadata.gz: a2c1ce387522445186b6fddcb6669836ccb976effbd6605c97a93c84f3feb778f56811ca478eefca9945d7e8e26be9bce19df45a6dc99880bdb293d07145c9ca
+  data.tar.gz: b4894004ccadee3da6050cdd771090aa67dbbcfae8f5b9519e33ff11bb9dc89e11f81c30b62bb2502813b29faa5de862f136907cc77b5d60af2f8ad97bba155c

data/CHANGELOG.md CHANGED Viewed

@@ -19,6 +19,7 @@ All notable changes to this project will be documented in this file. The format
 ### Removed
 - Removed the `menuitem` element as it's a deprecated HTML element.
+- Removed the `SGML#text` method. This has been replaced with `SGML#plain`.
 ***

data/lib/phlex/sgml.rb CHANGED Viewed

@@ -389,8 +389,11 @@ module Phlex
 					else raise ArgumentError, "Attribute keys should be Strings or Symbols."
 				end
+				lower_name = name.downcase
+				next if lower_name == "href" && v.start_with?(/\s*javascript:/i)
 				# Detect unsafe attribute names. Attribute names are considered unsafe if they match an event attribute or include unsafe characters.
-				if HTML::EVENT_ATTRIBUTES[name] || name.match?(/[<>&"']/)
+				if HTML::EVENT_ATTRIBUTES[lower_name] || name.match?(/[<>&"']/)
 					raise ArgumentError, "Unsafe attribute name detected: #{k}."
 				end

data/lib/phlex/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Phlex
-	VERSION = "1.7.0"
+	VERSION = "1.7.1"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: phlex
 version: !ruby/object:Gem::Version
-  version: 1.7.0
+  version: 1.7.1
 platform: ruby
 authors:
 - Joel Drapper
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2023-04-18 00:00:00.000000000 Z
+date: 2024-03-11 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: concurrent-ruby
@@ -119,7 +119,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.10
+rubygems_version: 3.4.22
 signing_key:
 specification_version: 4
 summary: A fun framework for building views in Ruby.