phlex 1.7.1 → 1.7.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/phlex/sgml.rb +1 -1
  3. data/lib/phlex/version.rb +1 -1
  4. metadata +3 -3
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 43c71026cecf29024dff9fd7d978bc25c5e4abadce4bef2c9a70f7e9f307d591
4
- data.tar.gz: 627c81fc57dc871e8adeadf65246f68fbff2cc3f2c2c821a319b48a6f2795a00
3
+ metadata.gz: d170ef0abb658ae5594b875fcc2ee2448ddc59ad506142ab5761d7798d09f13d
4
+ data.tar.gz: 8d445dddb9e25ed2898148b429132cde27d6901dba580f2ebd83631fa1427601
5
5
  SHA512:
6
- metadata.gz: a2c1ce387522445186b6fddcb6669836ccb976effbd6605c97a93c84f3feb778f56811ca478eefca9945d7e8e26be9bce19df45a6dc99880bdb293d07145c9ca
7
- data.tar.gz: b4894004ccadee3da6050cdd771090aa67dbbcfae8f5b9519e33ff11bb9dc89e11f81c30b62bb2502813b29faa5de862f136907cc77b5d60af2f8ad97bba155c
6
+ metadata.gz: b4f9d918a630a2b78f00eb7517851b80992d743ed6f05940730c4a673ae06673abf95f543e97ee5320f0f23f34ff7a5c20785ae84e91e97e5667427d226beba9
7
+ data.tar.gz: 9b2738835a85ea56ca932d9888676b8e4112cea4c3d538bfdfb5a2574f59cbf41e7811d338eeff7cf75981242a7abddec29573cfbfdb89cd2002446534b73816
data/lib/phlex/sgml.rb CHANGED
@@ -390,7 +390,7 @@ module Phlex
390
390
  end
391
391
 
392
392
  lower_name = name.downcase
393
- next if lower_name == "href" && v.start_with?(/\s*javascript:/i)
393
+ next if lower_name == "href" && v.to_s.downcase.tr("\t \n", "").start_with?("javascript:")
394
394
 
395
395
  # Detect unsafe attribute names. Attribute names are considered unsafe if they match an event attribute or include unsafe characters.
396
396
  if HTML::EVENT_ATTRIBUTES[lower_name] || name.match?(/[<>&"']/)
data/lib/phlex/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Phlex
4
- VERSION = "1.7.1"
4
+ VERSION = "1.7.2"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: phlex
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.7.1
4
+ version: 1.7.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Joel Drapper
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2024-03-11 00:00:00.000000000 Z
11
+ date: 2024-04-17 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: concurrent-ruby
@@ -119,7 +119,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
119
119
  - !ruby/object:Gem::Version
120
120
  version: '0'
121
121
  requirements: []
122
- rubygems_version: 3.4.22
122
+ rubygems_version: 3.5.9
123
123
  signing_key:
124
124
  specification_version: 4
125
125
  summary: A fun framework for building views in Ruby.