RubyGems - qiita-markdown - Versions diffs - 0.7.1 → 0.8.0 - Mend

qiita-markdown 0.7.1 → 0.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +3 -0
data/lib/qiita/markdown/filters/sanitize.rb +3 -1
data/lib/qiita/markdown/version.rb +1 -1
data/spec/qiita/markdown/processor_spec.rb +32 -0
metadata +3 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 6b66602727857672deb15686f30a84459ca8abc8
-  data.tar.gz: 42d96b87ea9bd7ab22e26b6fcbecccad751f2bf3
+  metadata.gz: ef101af1f76d71dea59fe6ea077b5ba69e21f2f7
+  data.tar.gz: 669da8457ddc379eee5e5a6fcbc4fab9d6176bc1
 SHA512:
-  metadata.gz: 76e646fabb486443f85395a54821e2b64b6f241ecb4da4ef2bccd4f364b4e33cdc77a457a7523b798bfe90dfe9c4b90472e50e17bed58d4c885bb5a1fb242eb4
-  data.tar.gz: 8548756ff8d170d01abb8476af73bc4521b0b37e5c811cadab45cda9b79f7ba5a25f22af334bca7f643bcba8a5040a875e43f4089ccbbf6210f137c2259179bb
+  metadata.gz: 10a4aa30b42713f76af7481c237720eef4d57e628be172747e3e5edb8fe7a35999e88d35f0c62afae144c41a70c5ebe416d5ecc6aeae603c5cbcb0e59df0e41d
+  data.tar.gz: fc88f07dc2fbd3ee5683fdbc6b632391be4ba3472cec81e220fa9393134ea65808e57b0e90c7093307134e13285f2f272e8bd84c6582655fce6f1f94e9971c00

data/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,6 @@
+## 0.8.0
+- Sanitize data-attributes
 ## 0.7.1
 - Support mentions to 2-character usernames

data/lib/qiita/markdown/filters/sanitize.rb CHANGED Viewed

@@ -94,6 +94,7 @@ module Qiita
               "color",
               "cols",
               "colspan",
+              "data-lang",
               "datetime",
               "height",
               "hreflang",
@@ -106,7 +107,6 @@ module Qiita
               "target",
               "title",
               "width",
-              :data,
             ],
           },
           css: {
@@ -190,6 +190,8 @@ module Qiita
         }
         SCRIPTABLE_RULE = RULE.dup.tap do |rule|
+          rule[:attributes] = RULE[:attributes].dup
+          rule[:attributes][:all] = rule[:attributes][:all] + [:data]
           rule[:elements] = RULE[:elements] + ["iframe", "script"]
           rule[:remove_contents] = []
         end

data/lib/qiita/markdown/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Qiita
   module Markdown
-    VERSION = "0.7.1"
+    VERSION = "0.8.0"
   end
 end

data/spec/qiita/markdown/processor_spec.rb CHANGED Viewed

@@ -668,5 +668,37 @@ describe Qiita::Markdown::Processor do
         EOS
       end
     end
+    context "with data-attributes" do
+      let(:markdown) do
+        <<-EOS.strip_heredoc
+          <div data-a="b"></div>
+        EOS
+      end
+      it "sanitizes data-attributes" do
+        should eq <<-EOS.strip_heredoc
+          <div></div>
+        EOS
+      end
+    end
+    context "with data-attributes and :script option" do
+      before do
+        context[:script] = true
+      end
+      let(:markdown) do
+        <<-EOS.strip_heredoc
+          <div data-a="b"></div>
+        EOS
+      end
+      it "does not sanitize data-attributes" do
+        should eq <<-EOS.strip_heredoc
+          <div data-a="b"></div>
+        EOS
+      end
+    end
   end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: qiita-markdown
 version: !ruby/object:Gem::Version
-  version: 0.7.1
+  version: 0.8.0
 platform: ruby
 authors:
 - Ryo Nakamura
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-04-22 00:00:00.000000000 Z
+date: 2015-06-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -313,3 +313,4 @@ test_files:
 - spec/qiita/markdown/processor_spec.rb
 - spec/qiita/markdown/summary_processor_spec.rb
 - spec/spec_helper.rb
+has_rdoc: