phlex 1.6.2 → 1.6.3

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.

This version of phlex might be problematic. Click here for more details.

Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/phlex/sgml.rb +1 -1
  3. data/lib/phlex/version.rb +1 -1
  4. metadata +3 -3
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 85f8d8d06e49280c1fd480bf596fd6f13e76d9872fe363349e9e481d8c32fe44
4
- data.tar.gz: 55b77a7f744a657406a84f98cc049d38b3a4631dd60d29b45a0d33022efb7695
3
+ metadata.gz: 438579af7c3214e840fc0c6762b68855b91d6f304f2a3a327cb65eded9946ad7
4
+ data.tar.gz: 8c41235d58eb9e75438ee05c291ce093c9c2b0b51eb0c799a5f603bea0e10740
5
5
  SHA512:
6
- metadata.gz: a1628997a70876299299b3825bfb9da74be95703d7402898f57e550945eb1b35da61382237914729ab1f90faeca671d377b10c28ae3c22589afb8f23b5a4d0f4
7
- data.tar.gz: 0e62cb5507038341d2f4ef8104fbf6cc79723032cb5b88510c5d44376ba4668b44571a047819b0f03b900abdd6d0c8f8585c369d0f1923db9482962e95d91393
6
+ metadata.gz: 064c67f3cca9ed9f881abda88763043a9c12333dd9eb6b2687e56e08012f5fb22865fe85479ac389d62dbd8a5580bee1fc17fe90264052de138ca16cf4a4689d
7
+ data.tar.gz: 33c1f50edb0f78e4dd6bb4df1b30be9303f5dc2796bafd2bef9a8d831484b0643ecc0d4eba6c2fefdc5d518636075ddd3a3fe1025b0b6a4d0e303b3fd5e644ee
data/lib/phlex/sgml.rb CHANGED
@@ -277,7 +277,7 @@ module Phlex
277
277
  end
278
278
 
279
279
  lower_name = name.downcase
280
- next if lower_name == "href" && v.start_with?(/\s*javascript:/i)
280
+ next if lower_name == "href" && v.to_s.downcase.tr("\t \n", "").start_with?("javascript:")
281
281
 
282
282
  # Detect unsafe attribute names. Attribute names are considered unsafe if they match an event attribute or include unsafe characters.
283
283
  if HTML::EVENT_ATTRIBUTES[lower_name] || name.match?(/[<>&"']/)
data/lib/phlex/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Phlex
4
- VERSION = "1.6.2"
4
+ VERSION = "1.6.3"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: phlex
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.6.2
4
+ version: 1.6.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Joel Drapper
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2024-03-11 00:00:00.000000000 Z
11
+ date: 2024-04-17 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: concurrent-ruby
@@ -117,7 +117,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
117
117
  - !ruby/object:Gem::Version
118
118
  version: '0'
119
119
  requirements: []
120
- rubygems_version: 3.5.6
120
+ rubygems_version: 3.5.9
121
121
  signing_key:
122
122
  specification_version: 4
123
123
  summary: A framework for building views in Ruby.