rails_xss 0.3.1 → 0.3.2
Sign up to get free protection for your applications and to get access to all the features.
- data/VERSION +1 -1
- data/lib/rails_xss/erubis.rb +3 -1
- metadata +2 -2
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
0.3.
|
1
|
+
0.3.2
|
data/lib/rails_xss/erubis.rb
CHANGED
@@ -17,8 +17,10 @@ module RailsXss
|
|
17
17
|
src << "@output_buffer.safe_concat('" << escape_text(text) << "');"
|
18
18
|
end
|
19
19
|
|
20
|
+
BLOCK_EXPR = /\s+(do|\{)(\s*\|[^|]*\|)?\s*\Z/
|
21
|
+
|
20
22
|
def add_expr_literal(src, code)
|
21
|
-
if code =~
|
23
|
+
if code =~ BLOCK_EXPR
|
22
24
|
src << "@output_buffer.safe_concat((" << $1 << ").to_s);"
|
23
25
|
else
|
24
26
|
src << '@output_buffer << ((' << code << ').to_s);'
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: rails_xss
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.3.
|
4
|
+
version: 0.3.2
|
5
5
|
prerelease:
|
6
6
|
platform: ruby
|
7
7
|
authors:
|
@@ -9,7 +9,7 @@ authors:
|
|
9
9
|
autorequire:
|
10
10
|
bindir: bin
|
11
11
|
cert_chain: []
|
12
|
-
date:
|
12
|
+
date: 2013-01-14 00:00:00.000000000 Z
|
13
13
|
dependencies:
|
14
14
|
- !ruby/object:Gem::Dependency
|
15
15
|
name: erubis
|