wunderbar 1.2.10 → 1.3.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +9 -7
- data/lib/wunderbar/environment.rb +4 -1
- data/lib/wunderbar/version.rb +2 -2
- data/wunderbar.gemspec +4 -4
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: a7f6f11a34c8540709e572a829025fd0d28e8522d9882d336e842caafe91c9f2
|
|
4
|
+
data.tar.gz: 57a8d1338c347dacc8beea0ffbf5de77181f88cb5f472ce6078a4e18ae14a08c
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 59c38775e59733f8255c29f251cdd6770084517913c0b10fceb3eb809301ddf4487ba01c6b831109fd5d516fdb816ef3ba64729da86b1a0c29d3f5f3e1cd9d82
|
|
7
|
+
data.tar.gz: b0b57ca9a258115bb3eb1edb4aaf2df2eee16cbb0229e20f497f70734741e116c21fc045a55fe6bc9e1b04f8f87acd29625f50c061dcdf30840b889435ffdce9
|
data/README.md
CHANGED
|
@@ -371,13 +371,15 @@ dependencies](#optional-dependencies) below), calls to insert markup
|
|
|
371
371
|
(`_{...}`) will escape the markup if the input is `tainted` and not explicitly
|
|
372
372
|
marked as `html-safe?` (when using Rails).
|
|
373
373
|
|
|
374
|
-
For
|
|
375
|
-
|
|
376
|
-
|
|
377
|
-
|
|
378
|
-
[`
|
|
379
|
-
|
|
380
|
-
|
|
374
|
+
For Ruby version < 2.6.0:
|
|
375
|
+
|
|
376
|
+
> For all environments other than Rails, unless you call `Wunderbar.unsafe!` at
|
|
377
|
+
> the top of your script, Wunderbar will also set
|
|
378
|
+
> [`$SAFE=1`](http://www.ruby-doc.org/docs/ProgrammingRuby/html/taint.html)
|
|
379
|
+
> before processing requests. This means that you will need to
|
|
380
|
+
> [`untaint`](ruby-doc.org/core/Object.html#method-i-untaint) all inputs
|
|
381
|
+
> received from external sources before you make system calls or access the file
|
|
382
|
+
> system.
|
|
381
383
|
|
|
382
384
|
A special feature that effectively is only available in the Rails environment:
|
|
383
385
|
if the first argument to call that creates an element is `html_safe?`, then
|
|
@@ -5,7 +5,10 @@ module Wunderbar
|
|
|
5
5
|
TEXT = ARGV.delete('--text')
|
|
6
6
|
end
|
|
7
7
|
|
|
8
|
-
|
|
8
|
+
# Ruby 2.6.0 gets rid of $SAFE > 1; unfortunately in the process it
|
|
9
|
+
# treats $SAFE = 1 as a higher level; @FAFE = 1 no longer is limited
|
|
10
|
+
# to taintness checks, it not treats all File operations as unsafe
|
|
11
|
+
@@unsafe = (RUBY_VERSION.split('.').map(&:to_i) <=> [2, 6, 0]) == 1
|
|
9
12
|
|
|
10
13
|
def self.unsafe!(mode=true)
|
|
11
14
|
@@unsafe=mode
|
data/lib/wunderbar/version.rb
CHANGED
data/wunderbar.gemspec
CHANGED
|
@@ -1,21 +1,21 @@
|
|
|
1
1
|
# -*- encoding: utf-8 -*-
|
|
2
|
-
# stub: wunderbar 1.
|
|
2
|
+
# stub: wunderbar 1.3.0 ruby lib
|
|
3
3
|
|
|
4
4
|
Gem::Specification.new do |s|
|
|
5
5
|
s.name = "wunderbar".freeze
|
|
6
|
-
s.version = "1.
|
|
6
|
+
s.version = "1.3.0"
|
|
7
7
|
|
|
8
8
|
s.required_rubygems_version = Gem::Requirement.new(">= 0".freeze) if s.respond_to? :required_rubygems_version=
|
|
9
9
|
s.require_paths = ["lib".freeze]
|
|
10
10
|
s.authors = ["Sam Ruby".freeze]
|
|
11
|
-
s.date = "
|
|
11
|
+
s.date = "2019-03-06"
|
|
12
12
|
s.description = " Wunderbar makes it easy to produce valid HTML5, wellformed XHTML, Unicode\n (utf-8), consistently indented, readable applications.'\n".freeze
|
|
13
13
|
s.email = "rubys@intertwingly.net".freeze
|
|
14
14
|
s.files = ["COPYING".freeze, "README.md".freeze, "lib/wunderbar".freeze, "lib/wunderbar.rb".freeze, "lib/wunderbar/asset.rb".freeze, "lib/wunderbar/backtick.rb".freeze, "lib/wunderbar/bootstrap".freeze, "lib/wunderbar/bootstrap.rb".freeze, "lib/wunderbar/bootstrap/theme.rb".freeze, "lib/wunderbar/builder.rb".freeze, "lib/wunderbar/cgi-methods.rb".freeze, "lib/wunderbar/coderay.rb".freeze, "lib/wunderbar/coffeescript.rb".freeze, "lib/wunderbar/cssproxy.rb".freeze, "lib/wunderbar/environment.rb".freeze, "lib/wunderbar/eventsource.rb".freeze, "lib/wunderbar/html-methods.rb".freeze, "lib/wunderbar/installation.rb".freeze, "lib/wunderbar/job-control.rb".freeze, "lib/wunderbar/jquery".freeze, "lib/wunderbar/jquery.rb".freeze, "lib/wunderbar/jquery/filter.rb".freeze, "lib/wunderbar/jquery/stupidtable.rb".freeze, "lib/wunderbar/listen.rb".freeze, "lib/wunderbar/logger.rb".freeze, "lib/wunderbar/markdown.rb".freeze, "lib/wunderbar/marked.rb".freeze, "lib/wunderbar/node.rb".freeze, "lib/wunderbar/pagedown.rb".freeze, "lib/wunderbar/polymer.rb".freeze, "lib/wunderbar/rack.rb".freeze, "lib/wunderbar/rails.rb".freeze, "lib/wunderbar/react.rb".freeze, "lib/wunderbar/render.rb".freeze, "lib/wunderbar/script.rb".freeze, "lib/wunderbar/server.rb".freeze, "lib/wunderbar/sinatra.rb".freeze, "lib/wunderbar/underscore.rb".freeze, "lib/wunderbar/vendor".freeze, "lib/wunderbar/vendor/Markdown.Converter.js".freeze, "lib/wunderbar/vendor/bootstrap-theme.min.css".freeze, "lib/wunderbar/vendor/bootstrap.min.css".freeze, "lib/wunderbar/vendor/bootstrap.min.js".freeze, "lib/wunderbar/vendor/eventsource.min.js".freeze, "lib/wunderbar/vendor/jquery-3.2.1.min.js".freeze, "lib/wunderbar/vendor/marked.min.js".freeze, "lib/wunderbar/vendor/polymer-v0.0.20131003.min.js".freeze, "lib/wunderbar/vendor/react-dom-server.min.js".freeze, "lib/wunderbar/vendor/react-dom.min.js".freeze, "lib/wunderbar/vendor/react-with-addons.min.js".freeze, "lib/wunderbar/vendor/stupidtable.min.js".freeze, "lib/wunderbar/vendor/underscore-min.js".freeze, "lib/wunderbar/vendor/vue-server.min.js".freeze, "lib/wunderbar/vendor/vue.min.js".freeze, "lib/wunderbar/version.rb".freeze, "lib/wunderbar/vue.rb".freeze, "lib/wunderbar/websocket.rb".freeze, "wunderbar.gemspec".freeze]
|
|
15
15
|
s.homepage = "http://github.com/rubys/wunderbar".freeze
|
|
16
16
|
s.licenses = ["MIT".freeze]
|
|
17
17
|
s.required_ruby_version = Gem::Requirement.new(">= 1.9.3".freeze)
|
|
18
|
-
s.rubygems_version = "2.7.
|
|
18
|
+
s.rubygems_version = "2.7.6".freeze
|
|
19
19
|
s.summary = "HTML Generator and CGI application support".freeze
|
|
20
20
|
|
|
21
21
|
if s.respond_to? :specification_version then
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: wunderbar
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.3.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Sam Ruby
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2019-03-06 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: json
|
|
@@ -106,7 +106,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
106
106
|
version: '0'
|
|
107
107
|
requirements: []
|
|
108
108
|
rubyforge_project:
|
|
109
|
-
rubygems_version: 2.7.
|
|
109
|
+
rubygems_version: 2.7.6
|
|
110
110
|
signing_key:
|
|
111
111
|
specification_version: 4
|
|
112
112
|
summary: HTML Generator and CGI application support
|