phlex 1.8.2 → 1.8.3

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.


This version of phlex might be problematic. Click here for more details.

checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: c1d48498ccaf33dd17284b64a64da61c685261ef5a00546730dcf6558d2f3d09
4
- data.tar.gz: 65189fc76952e4cd6927c80e4c3a8123ae57e63f34ea29d40783374b2a34fdbb
3
+ metadata.gz: '09727302c479923a2ba6cb0d528876dc33ce7094abf4bcf1b966d15dbff40833'
4
+ data.tar.gz: 6fd16fa00842f46565ae71c02dea9fa1a9424d224b86bb1128e0dcbda7659b11
5
5
  SHA512:
6
- metadata.gz: f935d6ef0a93e5a973ff97ced63bcec83697d63766ae28c8a8b779f2c1fb6146f8fb285c091833ae23a4b8336e8ddf67713c40d16000b221898d9ea0082417a6
7
- data.tar.gz: 2a96ec7be69bb08efe6453253614c1b6955931e1b62607577041d877730c96ec37d8a9eed2729f8d3caf92078c9d890dfac7b4de9c56d15de48f059a44872976
6
+ metadata.gz: e0c97c92e8343429f0965a4edd34b49e3199eba4d665ce805961f9d8e2e63d0f9e5c313629cffbeab47d1fea0e9fe1fe8f3c95d48ceaf82b8b963e1bca70c014
7
+ data.tar.gz: 2c00865b16a83bfe181b22e99c96142825d777095b4bbbb0983a10ab3c1aebfef75c00e0045633dc6e449bdca3f7883606975626cf350f3a19d7a687b851321a
data/lib/phlex/sgml.rb CHANGED
@@ -382,7 +382,7 @@ module Phlex
382
382
  end
383
383
 
384
384
  lower_name = name.downcase
385
- next if lower_name == "href" && v.start_with?(/\s*javascript:/i)
385
+ next if lower_name == "href" && v.to_s.downcase.tr("\t \n", "").start_with?("javascript:")
386
386
 
387
387
  # Detect unsafe attribute names. Attribute names are considered unsafe if they match an event attribute or include unsafe characters.
388
388
  if HTML::EVENT_ATTRIBUTES[lower_name] || name.match?(/[<>&"']/)
data/lib/phlex/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Phlex
4
- VERSION = "1.8.2"
4
+ VERSION = "1.8.3"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: phlex
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.8.2
4
+ version: 1.8.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Joel Drapper
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2024-03-11 00:00:00.000000000 Z
11
+ date: 2024-04-17 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: concurrent-ruby
@@ -119,7 +119,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
119
119
  - !ruby/object:Gem::Version
120
120
  version: '0'
121
121
  requirements: []
122
- rubygems_version: 3.4.22
122
+ rubygems_version: 3.5.9
123
123
  signing_key:
124
124
  specification_version: 4
125
125
  summary: A fun framework for building views in Ruby.