wunderbar 0.14.3 → 0.14.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- data/lib/wunderbar/environment.rb +16 -0
- data/lib/wunderbar/version.rb +1 -1
- data/wunderbar.gemspec +2 -2
- metadata +4 -4
|
@@ -12,6 +12,22 @@ module Wunderbar
|
|
|
12
12
|
end
|
|
13
13
|
|
|
14
14
|
def self.safe?
|
|
15
|
+
if $SAFE == 0 and not @@unsafe
|
|
16
|
+
# some gems (e.g. em-websocket-0.3.6) insert unsafe entries into the
|
|
17
|
+
# path, and that prevents requires from succeeding. If it looks like
|
|
18
|
+
# we are about to make a transition to $SAFE=1, clean up that mess
|
|
19
|
+
# before proceeding.
|
|
20
|
+
#
|
|
21
|
+
# the goal of $SAFE is not to protect us against software which was
|
|
22
|
+
# installed by the owner of the site, but from injection attacks
|
|
23
|
+
# contained within data provided by users of the site.
|
|
24
|
+
$:.each_with_index do |path, index|
|
|
25
|
+
if path.tainted?
|
|
26
|
+
$:[index] = File.expand_path(path.untaint).untaint
|
|
27
|
+
end
|
|
28
|
+
end
|
|
29
|
+
end
|
|
30
|
+
|
|
15
31
|
not @@unsafe
|
|
16
32
|
end
|
|
17
33
|
|
data/lib/wunderbar/version.rb
CHANGED
data/wunderbar.gemspec
CHANGED
|
@@ -2,11 +2,11 @@
|
|
|
2
2
|
|
|
3
3
|
Gem::Specification.new do |s|
|
|
4
4
|
s.name = "wunderbar"
|
|
5
|
-
s.version = "0.14.
|
|
5
|
+
s.version = "0.14.4"
|
|
6
6
|
|
|
7
7
|
s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
|
|
8
8
|
s.authors = ["Sam Ruby"]
|
|
9
|
-
s.date = "2012-05-
|
|
9
|
+
s.date = "2012-05-02"
|
|
10
10
|
s.description = " Wunderbar makes it easy to produce valid HTML5, wellformed XHTML, Unicode\n (utf-8), consistently indented, readable applications. This includes\n output that conforms to the Polyglot specification and the emerging\n results from the XML Error Recovery Community Group.\n"
|
|
11
11
|
s.email = "rubys@intertwingly.net"
|
|
12
12
|
s.files = ["wunderbar.gemspec", "README.md", "COPYING", "lib/wunderbar.rb", "lib/wunderbar", "lib/wunderbar/installation.rb", "lib/wunderbar/html-methods.rb", "lib/wunderbar/job-control.rb", "lib/wunderbar/server.rb", "lib/wunderbar/logger.rb", "lib/wunderbar/rack.rb", "lib/wunderbar/builder.rb", "lib/wunderbar/websocket.rb", "lib/wunderbar/sinatra.rb", "lib/wunderbar/environment.rb", "lib/wunderbar/rails.rb", "lib/wunderbar/cgi-methods.rb", "lib/wunderbar/cssproxy.rb", "lib/wunderbar/version.rb"]
|
metadata
CHANGED
|
@@ -1,13 +1,13 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: wunderbar
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
hash:
|
|
4
|
+
hash: 47
|
|
5
5
|
prerelease:
|
|
6
6
|
segments:
|
|
7
7
|
- 0
|
|
8
8
|
- 14
|
|
9
|
-
-
|
|
10
|
-
version: 0.14.
|
|
9
|
+
- 4
|
|
10
|
+
version: 0.14.4
|
|
11
11
|
platform: ruby
|
|
12
12
|
authors:
|
|
13
13
|
- Sam Ruby
|
|
@@ -15,7 +15,7 @@ autorequire:
|
|
|
15
15
|
bindir: bin
|
|
16
16
|
cert_chain: []
|
|
17
17
|
|
|
18
|
-
date: 2012-05-
|
|
18
|
+
date: 2012-05-02 00:00:00 Z
|
|
19
19
|
dependencies:
|
|
20
20
|
- !ruby/object:Gem::Dependency
|
|
21
21
|
name: builder
|