phlex 1.5.2 → 1.5.3

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.

This version of phlex might be problematic. Click here for more details.

Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/phlex/sgml.rb +1 -1
  3. data/lib/phlex/version.rb +1 -1
  4. metadata +3 -3
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 9bb2eee10f58724c7364aa20c376ca8a9b1e6ab05eac257f47e383d22b476d3f
4
- data.tar.gz: 388671f8e3de193ad1bf55cd24a533c1754f22ab217f4b114dc92622692302aa
3
+ metadata.gz: cb9f666a03a35cd5769f6a7fb559665f829997ad2d4267997512a21199091eee
4
+ data.tar.gz: 0e4e313a93f0ad010dccf984ebce586dfbe5c72cf10bec0a101c2a8f83d0af9b
5
5
  SHA512:
6
- metadata.gz: 85b52e8f364ddbfabc3de38154dbe8d6f45365e9f512b3a5e2cc8aff1e6c75149fe86867b91f6726980544b80e5f76d48a22c551158918932ac087bb662e9d86
7
- data.tar.gz: 8aae351181789f6d5956d36f2340463bf7d1b614fc3d1d22ad2d562ea8aa4ebc1b486e1bcba368f5a7ded560f030b64e465a0e25ae880f677b714dcee01fbbe3
6
+ metadata.gz: 3b2bdd2072778140464602492e213af01dcfd6b780ff8a92b21384ac31205e7c2b3ed767222e431a8e3983c9fe4483cea6494800c02979abee3617a0c89dee80
7
+ data.tar.gz: '059c2b94fc6c38a55997d5e9479c64f56bd43d0d9566647584f54c54728cb84924c88a910bb2acb7093ffd3746c1215e1b6f6c257b7ab02de7c821e19c06fc28'
data/lib/phlex/sgml.rb CHANGED
@@ -274,7 +274,7 @@ module Phlex
274
274
  end
275
275
 
276
276
  lower_name = name.downcase
277
- next if lower_name == "href" && v.start_with?(/\s*javascript:/i)
277
+ next if lower_name == "href" && v.to_s.downcase.tr("\t \n", "").start_with?("javascript:")
278
278
 
279
279
  # Detect unsafe attribute names. Attribute names are considered unsafe if they match an event attribute or include unsafe characters.
280
280
  if HTML::EVENT_ATTRIBUTES[lower_name] || name.match?(/[<>&"']/)
data/lib/phlex/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Phlex
4
- VERSION = "1.5.2"
4
+ VERSION = "1.5.3"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: phlex
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.5.2
4
+ version: 1.5.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Joel Drapper
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2024-03-11 00:00:00.000000000 Z
11
+ date: 2024-04-17 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: concurrent-ruby
@@ -116,7 +116,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
116
116
  - !ruby/object:Gem::Version
117
117
  version: '0'
118
118
  requirements: []
119
- rubygems_version: 3.5.6
119
+ rubygems_version: 3.5.9
120
120
  signing_key:
121
121
  specification_version: 4
122
122
  summary: A framework for building views in Ruby.