RubyGems - sanitize - Versions diffs - 2.1.1 → 6.0.0 - Mend

sanitize 2.1.1 → 6.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of sanitize might be problematic. Click here for more details.

Files changed (30) hide show

checksums.yaml +4 -4
data/HISTORY.md +520 -55
data/LICENSE +1 -1
data/README.md +438 -168
data/lib/sanitize/config/basic.rb +12 -32
data/lib/sanitize/config/default.rb +118 -0
data/lib/sanitize/config/relaxed.rb +716 -53
data/lib/sanitize/config/restricted.rb +3 -23
data/lib/sanitize/config.rb +53 -79
data/lib/sanitize/css.rb +348 -0
data/lib/sanitize/transformers/clean_cdata.rb +3 -3
data/lib/sanitize/transformers/clean_comment.rb +6 -3
data/lib/sanitize/transformers/clean_css.rb +57 -0
data/lib/sanitize/transformers/clean_doctype.rb +19 -0
data/lib/sanitize/transformers/clean_element.rb +192 -124
data/lib/sanitize/version.rb +3 -1
data/lib/sanitize.rb +172 -143
data/test/common.rb +3 -0
data/test/test_clean_comment.rb +47 -0
data/test/test_clean_css.rb +67 -0
data/test/test_clean_doctype.rb +71 -0
data/test/test_clean_element.rb +545 -0
data/test/test_config.rb +65 -0
data/test/test_malicious_css.rb +42 -0
data/test/test_malicious_html.rb +235 -0
data/test/test_parser.rb +75 -0
data/test/test_sanitize.rb +151 -675
data/test/test_sanitize_css.rb +424 -0
data/test/test_transformers.rb +230 -0
metadata +44 -41

metadata CHANGED Viewed

@@ -1,86 +1,74 @@
 --- !ruby/object:Gem::Specification
 name: sanitize
 version: !ruby/object:Gem::Version
-  version: 2.1.1
+  version: 6.0.0
 platform: ruby
 authors:
 - Ryan Grove
-autorequire:
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-09-30 00:00:00.000000000 Z
+date: 2021-08-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: nokogiri
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 1.4.4
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 1.4.4
-- !ruby/object:Gem::Dependency
-  name: minitest
+  name: crass
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.7'
-  type: :development
+        version: 1.0.2
+  type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '4.7'
+        version: 1.0.2
 - !ruby/object:Gem::Dependency
-  name: rake
+  name: nokogiri
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.1'
-  type: :development
+        version: 1.12.0
+  type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '10.1'
+        version: 1.12.0
 - !ruby/object:Gem::Dependency
-  name: redcarpet
+  name: minitest
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.0.0
+        version: 5.14.4
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 3.0.0
+        version: 5.14.4
 - !ruby/object:Gem::Dependency
-  name: yard
+  name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.7
+        version: 13.0.6
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.8.7
-description:
+        version: 13.0.6
+description: Sanitize is an allowlist-based HTML and CSS sanitizer. It removes all
+  HTML and/or CSS from a string except the elements, attributes, and properties you
+  choose to allow.
 email: ryan@wonko.com
 executables: []
 extensions: []
@@ -92,17 +80,33 @@ files:
 - lib/sanitize.rb
 - lib/sanitize/config.rb
 - lib/sanitize/config/basic.rb
+- lib/sanitize/config/default.rb
 - lib/sanitize/config/relaxed.rb
 - lib/sanitize/config/restricted.rb
+- lib/sanitize/css.rb
 - lib/sanitize/transformers/clean_cdata.rb
 - lib/sanitize/transformers/clean_comment.rb
+- lib/sanitize/transformers/clean_css.rb
+- lib/sanitize/transformers/clean_doctype.rb
 - lib/sanitize/transformers/clean_element.rb
 - lib/sanitize/version.rb
+- test/common.rb
+- test/test_clean_comment.rb
+- test/test_clean_css.rb
+- test/test_clean_doctype.rb
+- test/test_clean_element.rb
+- test/test_config.rb
+- test/test_malicious_css.rb
+- test/test_malicious_html.rb
+- test/test_parser.rb
 - test/test_sanitize.rb
+- test/test_sanitize_css.rb
+- test/test_transformers.rb
 homepage: https://github.com/rgrove/sanitize/
-licenses: []
+licenses:
+- MIT
 metadata: {}
-post_install_message:
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -110,16 +114,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 1.9.2
+      version: 2.5.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: 1.2.0
 requirements: []
-rubyforge_project:
-rubygems_version: 2.7.3
-signing_key:
+rubygems_version: 3.2.22
+signing_key:
 specification_version: 4
-summary: Whitelist-based HTML sanitizer.
+summary: Allowlist-based HTML and CSS sanitizer.
 test_files: []