phlex 1.9.1 → 1.9.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/lib/phlex/sgml.rb +1 -1
  3. data/lib/phlex/version.rb +1 -1
  4. metadata +3 -3
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 9a0ead9c6e98f79b9f6b71e897a3b7dd2a8be8c68b36c1ead9c4c7ac9d4a93af
4
- data.tar.gz: 51af9dc212b8d5f142c9e607bd0a4a6342cc84b18b59252f4986b394e530f495
3
+ metadata.gz: 4a5086db72d1a8982e118a9b8836df6c0e771bdccb993bc35cd564abd03024cf
4
+ data.tar.gz: 2df97da11201a0ecafc42a3c086f3ead72b6a1beec5d1106ba0aaffc221dae14
5
5
  SHA512:
6
- metadata.gz: 0703ddfddfca1a573f1883918c8e9f24c928b10c7305d477a8542e5ddac2d1debeb5a38617cfd7d6163a8ee94511395898fad17c78da54222ccdf231c1758fc0
7
- data.tar.gz: 6f2451edb1ecb37979c93e660364bdb3312d145a3a7a961b1c263cf927804ebf9501d5b503b082f1fd9973eba7ddefb55543a0308af328ef3aad987fb15adbdc
6
+ metadata.gz: 5c4adb1a76c98d565241d8b2910680f6ac0a5d01ae535f2e03f838e03b2301db858d65725b91f565928fb4346bbd268f3d0436aa47494f10e6d693d2f99d3492
7
+ data.tar.gz: e0bbb76d3e35bba90fb33ceed206b78c497ec21f05750930ea1438b3bdc9bab79d7664498fe93af835214806df820c4931f4039199297887b1d3603b859399a7
data/lib/phlex/sgml.rb CHANGED
@@ -384,7 +384,7 @@ module Phlex
384
384
  end
385
385
 
386
386
  lower_name = name.downcase
387
- next if lower_name == "href" && v.start_with?(/\s*javascript:/i)
387
+ next if lower_name == "href" && v.to_s.downcase.tr("\t \n", "").start_with?("javascript:")
388
388
 
389
389
  # Detect unsafe attribute names. Attribute names are considered unsafe if they match an event attribute or include unsafe characters.
390
390
  if HTML::EVENT_ATTRIBUTES[lower_name] || name.match?(/[<>&"']/)
data/lib/phlex/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Phlex
4
- VERSION = "1.9.1"
4
+ VERSION = "1.9.2"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: phlex
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.9.1
4
+ version: 1.9.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Joel Drapper
8
8
  autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2024-03-11 00:00:00.000000000 Z
11
+ date: 2024-04-16 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: concurrent-ruby
@@ -122,7 +122,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
122
122
  - !ruby/object:Gem::Version
123
123
  version: '0'
124
124
  requirements: []
125
- rubygems_version: 3.4.22
125
+ rubygems_version: 3.5.9
126
126
  signing_key:
127
127
  specification_version: 4
128
128
  summary: A fun framework for building views in Ruby.