HTML sanitization to Rails applications (part of Rails)
https://github.com/rails/rails-html-sanitizer
HTML sanitization for Rails applications.
-
1
derived packages
- Links to devel:lan...tensions / rubygem-r...anitizer
- Has a link diff
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout home:darix:apps/rubygem-rails-html-sanitizer && cd $_
- Create Badge
Refresh
Refresh
Source Files (show unmerged sources)
Filename | Size | Changed |
---|---|---|
gem2rpm.yml | 0000000072 72 Bytes | |
rails-html-sanitizer-1.6.0.gem | 0000023552 23 KB | |
rubygem-rails-html-sanitizer.changes | 0000007296 7.13 KB | |
rubygem-rails-html-sanitizer.spec | 0000002138 2.09 KB |
Latest Revision
Marcus Rueckert (darix)
committed
(revision 9)
-:x Updated to version 1.6.0 * Dependencies have been updated: - Loofah `~>2.21` and Nokogiri `~>1.14` for HTML5 parser support - As a result, required Ruby version is now `>= 2.7.0` Security updates will continue to be made on the `1.5.x` release branch as long as Rails 6.1 (which supports Ruby 2.5) is still in security support. *Mike Dalessio* * HTML5 standards-compliant sanitizers are now available on platforms supported by Nokogiri::HTML5. These are available as: - `Rails::HTML5::FullSanitizer` - `Rails::HTML5::LinkSanitizer` - `Rails::HTML5::SafeListSanitizer` And a new "vendor" is provided at `Rails::HTML5::Sanitizer` that can be used in a future version of Rails. Note that for symmetry `Rails::HTML4::Sanitizer` is also added, though its behavior is identical to the vendor class methods on `Rails::HTML::Sanitizer`. Users may call `Rails::HTML::Sanitizer.best_supported_vendor` to get back the HTML5 vendor if it's supported, else the legacy HTML4 vendor. *Mike Dalessio* * Module namespaces have changed, but backwards compatibility is provided by aliases. The library defines three additional modules: - `Rails::HTML` for general functionality (replacing `Rails::Html`) - `Rails::HTML4` containing sanitizers that parse content as HTML4 - `Rails::HTML5` containing sanitizers that parse content as HTML5 The following aliases are maintained for backwards compatibility: - `Rails::Html` points to `Rails::HTML` - `Rails::HTML::FullSanitizer` points to `Rails::HTML4::FullSanitizer` - `Rails::HTML::LinkSanitizer` points to `Rails::HTML4::LinkSanitizer` - `Rails::HTML::SafeListSanitizer` points to `Rails::HTML4::SafeListSanitizer` *Mike Dalessio*
Comments 0