vidibus-xss 0.1.13 → 0.1.14
Sign up to get free protection for your applications and to get access to all the features.
- data/Gemfile.lock +25 -13
- data/Rakefile +1 -1
- data/VERSION +1 -1
- data/lib/vidibus/xss/extensions/controller.rb +4 -4
- data/vidibus-xss.gemspec +5 -5
- metadata +7 -8
data/Gemfile.lock
CHANGED
@@ -30,6 +30,7 @@ GEM
|
|
30
30
|
activesupport (3.0.0)
|
31
31
|
arel (1.0.1)
|
32
32
|
activesupport (~> 3.0.0)
|
33
|
+
bson (1.1)
|
33
34
|
builder (2.1.2)
|
34
35
|
diff-lcs (1.1.2)
|
35
36
|
erubis (2.6.6)
|
@@ -43,17 +44,24 @@ GEM
|
|
43
44
|
rubyforge (>= 2.0.0)
|
44
45
|
json_pure (1.4.6)
|
45
46
|
macaddr (1.0.0)
|
46
|
-
mail (2.2.
|
47
|
+
mail (2.2.6.1)
|
47
48
|
activesupport (>= 2.3.6)
|
48
49
|
mime-types
|
49
50
|
treetop (>= 1.4.5)
|
50
51
|
mime-types (1.16)
|
52
|
+
mongo (1.0.9)
|
53
|
+
bson (>= 1.0.5)
|
54
|
+
mongoid (2.0.0.beta.19)
|
55
|
+
activemodel (~> 3.0)
|
56
|
+
mongo (= 1.0.9)
|
57
|
+
tzinfo (~> 0.3.22)
|
58
|
+
will_paginate (~> 3.0.pre)
|
51
59
|
nokogiri (1.4.3.1)
|
52
60
|
polyglot (0.3.1)
|
53
61
|
rack (1.2.1)
|
54
62
|
rack-mount (0.6.13)
|
55
63
|
rack (>= 1.0.0)
|
56
|
-
rack-test (0.5.
|
64
|
+
rack-test (0.5.6)
|
57
65
|
rack (>= 1.0)
|
58
66
|
rails (3.0.0)
|
59
67
|
actionmailer (= 3.0.0)
|
@@ -71,26 +79,30 @@ GEM
|
|
71
79
|
rake (0.8.7)
|
72
80
|
relevance-rcov (0.9.2.1)
|
73
81
|
rr (1.0.0)
|
74
|
-
rspec (2.0.0.beta.
|
75
|
-
rspec-core (= 2.0.0.beta.
|
76
|
-
rspec-expectations (= 2.0.0.beta.
|
77
|
-
rspec-mocks (= 2.0.0.beta.
|
78
|
-
rspec-core (2.0.0.beta.
|
79
|
-
rspec-expectations (2.0.0.beta.
|
82
|
+
rspec (2.0.0.beta.22)
|
83
|
+
rspec-core (= 2.0.0.beta.22)
|
84
|
+
rspec-expectations (= 2.0.0.beta.22)
|
85
|
+
rspec-mocks (= 2.0.0.beta.22)
|
86
|
+
rspec-core (2.0.0.beta.22)
|
87
|
+
rspec-expectations (2.0.0.beta.22)
|
80
88
|
diff-lcs (>= 1.1.2)
|
81
|
-
rspec-mocks (2.0.0.beta.
|
89
|
+
rspec-mocks (2.0.0.beta.22)
|
90
|
+
rspec-core (= 2.0.0.beta.22)
|
91
|
+
rspec-expectations (= 2.0.0.beta.22)
|
82
92
|
rubyforge (2.0.4)
|
83
93
|
json_pure (>= 1.1.7)
|
84
|
-
thor (0.14.
|
94
|
+
thor (0.14.3)
|
85
95
|
treetop (1.4.8)
|
86
96
|
polyglot (>= 0.3.1)
|
87
97
|
tzinfo (0.3.23)
|
88
98
|
uuid (2.3.1)
|
89
99
|
macaddr (~> 1.0)
|
90
|
-
vidibus-routing_error (0.1.
|
100
|
+
vidibus-routing_error (0.1.5)
|
91
101
|
rails (>= 3.0.0.rc)
|
92
|
-
vidibus-uuid (0.3.
|
93
|
-
|
102
|
+
vidibus-uuid (0.3.8)
|
103
|
+
mongoid (~> 2.0.0.beta.20)
|
104
|
+
uuid (~> 2.3.1)
|
105
|
+
will_paginate (3.0.pre2)
|
94
106
|
|
95
107
|
PLATFORMS
|
96
108
|
ruby
|
data/Rakefile
CHANGED
@@ -13,7 +13,7 @@ begin
|
|
13
13
|
gem.email = "andre@vidibus.com"
|
14
14
|
gem.homepage = "http://github.com/vidibus/vidibus-xss"
|
15
15
|
gem.authors = ["Andre Pankratz"]
|
16
|
-
gem.add_dependency "rails", "
|
16
|
+
gem.add_dependency "rails", "~> 3.0.0"
|
17
17
|
gem.add_dependency "nokogiri"
|
18
18
|
gem.add_dependency "vidibus-routing_error"
|
19
19
|
end
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
0.1.
|
1
|
+
0.1.14
|
@@ -115,8 +115,8 @@ module Vidibus
|
|
115
115
|
def extract_xss_javascripts(dom)
|
116
116
|
resources = []
|
117
117
|
for resource in dom.css('head script[type="text/javascript"]')
|
118
|
-
|
119
|
-
file = url_for(
|
118
|
+
next unless src = resource.attributes["src"]
|
119
|
+
file = url_for(src.value, :only_path => false)
|
120
120
|
resources << { :type => "text/javascript", :src => file }
|
121
121
|
end
|
122
122
|
resources
|
@@ -132,8 +132,8 @@ module Vidibus
|
|
132
132
|
def extract_xss_stylesheets(dom)
|
133
133
|
resources = []
|
134
134
|
for resource in dom.css('head link[type="text/css"]')
|
135
|
-
|
136
|
-
file = url_for(
|
135
|
+
next unless href = resource.attributes["href"]
|
136
|
+
file = url_for(href.value, :only_path => false)
|
137
137
|
media = resource.attributes["media"].value
|
138
138
|
resources << { :type => "text/css", :src => file, :media => media }
|
139
139
|
end
|
data/vidibus-xss.gemspec
CHANGED
@@ -5,11 +5,11 @@
|
|
5
5
|
|
6
6
|
Gem::Specification.new do |s|
|
7
7
|
s.name = %q{vidibus-xss}
|
8
|
-
s.version = "0.1.
|
8
|
+
s.version = "0.1.14"
|
9
9
|
|
10
10
|
s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
|
11
11
|
s.authors = ["Andre Pankratz"]
|
12
|
-
s.date = %q{2010-10-
|
12
|
+
s.date = %q{2010-10-05}
|
13
13
|
s.description = %q{Drop-in XSS support for remote applications.}
|
14
14
|
s.email = %q{andre@vidibus.com}
|
15
15
|
s.extra_rdoc_files = [
|
@@ -55,16 +55,16 @@ Gem::Specification.new do |s|
|
|
55
55
|
s.specification_version = 3
|
56
56
|
|
57
57
|
if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
|
58
|
-
s.add_runtime_dependency(%q<rails>, ["
|
58
|
+
s.add_runtime_dependency(%q<rails>, ["~> 3.0.0"])
|
59
59
|
s.add_runtime_dependency(%q<nokogiri>, [">= 0"])
|
60
60
|
s.add_runtime_dependency(%q<vidibus-routing_error>, [">= 0"])
|
61
61
|
else
|
62
|
-
s.add_dependency(%q<rails>, ["
|
62
|
+
s.add_dependency(%q<rails>, ["~> 3.0.0"])
|
63
63
|
s.add_dependency(%q<nokogiri>, [">= 0"])
|
64
64
|
s.add_dependency(%q<vidibus-routing_error>, [">= 0"])
|
65
65
|
end
|
66
66
|
else
|
67
|
-
s.add_dependency(%q<rails>, ["
|
67
|
+
s.add_dependency(%q<rails>, ["~> 3.0.0"])
|
68
68
|
s.add_dependency(%q<nokogiri>, [">= 0"])
|
69
69
|
s.add_dependency(%q<vidibus-routing_error>, [">= 0"])
|
70
70
|
end
|
metadata
CHANGED
@@ -1,13 +1,13 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: vidibus-xss
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
hash:
|
4
|
+
hash: 7
|
5
5
|
prerelease: false
|
6
6
|
segments:
|
7
7
|
- 0
|
8
8
|
- 1
|
9
|
-
-
|
10
|
-
version: 0.1.
|
9
|
+
- 14
|
10
|
+
version: 0.1.14
|
11
11
|
platform: ruby
|
12
12
|
authors:
|
13
13
|
- Andre Pankratz
|
@@ -15,7 +15,7 @@ autorequire:
|
|
15
15
|
bindir: bin
|
16
16
|
cert_chain: []
|
17
17
|
|
18
|
-
date: 2010-10-
|
18
|
+
date: 2010-10-05 00:00:00 +02:00
|
19
19
|
default_executable:
|
20
20
|
dependencies:
|
21
21
|
- !ruby/object:Gem::Dependency
|
@@ -24,15 +24,14 @@ dependencies:
|
|
24
24
|
requirement: &id001 !ruby/object:Gem::Requirement
|
25
25
|
none: false
|
26
26
|
requirements:
|
27
|
-
- -
|
27
|
+
- - ~>
|
28
28
|
- !ruby/object:Gem::Version
|
29
|
-
hash:
|
29
|
+
hash: 7
|
30
30
|
segments:
|
31
31
|
- 3
|
32
32
|
- 0
|
33
33
|
- 0
|
34
|
-
|
35
|
-
version: 3.0.0.rc
|
34
|
+
version: 3.0.0
|
36
35
|
type: :runtime
|
37
36
|
version_requirements: *id001
|
38
37
|
- !ruby/object:Gem::Dependency
|