rails rails-html-sanitizer issues

rails / rails-html-sanitizer

MIT License

302 stars 80 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

tidy: remove deprecation warnings from ActionView::Helpers::SanitizeHelper

#190 flavorjones opened 2 weeks ago
0
build(deps-dev): bump rexml from 3.3.5 to 3.3.6

#189 dependabot[bot] closed 3 weeks ago
0
performance: eliminate operations on removed nodes

#188 flavorjones closed 1 month ago
1
dep(dev): bundle update

#187 flavorjones closed 1 month ago
0
Fix ReDoS Vulnerability in PermitScrubber and Add Performance Test

#186 ch4n3-yoon opened 1 month ago
5
dep: update nokogiri in Gemfile.lock

#185 flavorjones closed 3 months ago
0
build(deps-dev): bump rexml from 3.2.6 to 3.2.8

#184 dependabot[bot] closed 4 months ago
0
Add new scrubber suitable for strip tags but adding whitespace

#183 jhottenstein opened 4 months ago
1
Small simplification of flow

#182 trevorrjohn closed 4 months ago
0
explore: using rgrove/sanitize as the underlying sanitizer

#181 flavorjones opened 4 months ago
0
Add <mark> to DEFAULT_ALLOWED_TAGS

#180 dogweather closed 4 months ago
2
dep: bundle update

#179 flavorjones closed 5 months ago
0
build(deps-dev): bump rack from 3.0.8 to 3.0.9.1

#178 dependabot[bot] closed 6 months ago
0
Remove checks for Ruby versions no longer supported

#177 jweir closed 7 months ago
1
Update latest checkout action version

#176 m-nakamura145 closed 8 months ago
1
Bump action/checkout and ruby version in workflow

#175 akhilgkrishnan closed 8 months ago
1
style: update rubocop config to match latest rails config

#174 flavorjones closed 8 months ago
0
start tracking Gemfile.lock

#173 flavorjones closed 8 months ago
0
Add Ruby 3.3 to CI matrix

#172 m-nakamura145 closed 8 months ago
1
Rename to actionview html sanitizer

#171 tongueroo closed 11 months ago
1
use railtie to set default sanitizer

#170 tongueroo closed 11 months ago
1
HTML5 SafeListSanitizer removes 'viewbox' even when allowed_attribute

#169 jorg-vr closed 11 months ago
2
Should 'class' be removed from the default safe list for attributes?

#168 moritzhoeppner closed 1 year ago
1
feat: introduce Rails::HTML::Sanitizer.best_supported_vendor

#167 flavorjones closed 1 year ago
0
dep: update loofah and nokogiri to versions fully supporting HTML5

#166 flavorjones closed 1 year ago
0
improve README

#165 flavorjones closed 1 year ago
0
dep: support older versions of Nokogiri and Loofah

#164 flavorjones closed 1 year ago
1
fix: ensure LinkSanitizer returns utf-8 encoded strings

#163 flavorjones closed 1 year ago
0
add an HTML5 sanitizer vendor for Rails to integrate with

#162 flavorjones closed 1 year ago
0
fix: avoid uninitialized ivar warning

#161 flavorjones closed 1 year ago
0
legal: update copyright dates and add flavorjones as a maintainer

#160 flavorjones closed 1 year ago
1
refactor: use require_relative for internal requires

#159 flavorjones closed 1 year ago
0
support html5 parsing

#158 flavorjones closed 1 year ago
0
feat: add an option to preserve whitespace to FullSanitizer

#157 Earlopain opened 1 year ago
4
allow `time` tag and `lang` attr, remove `XPATHS_TO_REMOVE`, add test coverage, get JRuby green

#156 flavorjones closed 1 year ago
1
The sanitization method changes the tag structure if there is a `<table>` tag inside an `<a>` tag.

#155 naitoh closed 1 year ago
3
Add an option to use `to_text` instead of `to_html` to `FullSanitizer`

#154 Earlopain opened 1 year ago
13
Please add required_ruby_version to gemspec

#153 jeremyevans closed 1 year ago
3
In the sanitize method, the value of the `multiple` attribute of the html tag is missing.

#152 naitoh closed 1 year ago
2
dev: Rails rubocop config, and drop support for ruby `< 2.5`

#151 flavorjones closed 1 year ago
0
CI against Ruby 3.2

#150 amatsuda closed 1 year ago
1
Bump actions/checkout from 2 to 3

#149 kyoshidajp closed 1 year ago
1
Private reporting of a potential security vulnerability

#148 Sim4n6 closed 1 year ago
6
port: 1.4.4 changes

#147 flavorjones closed 1 year ago
0
ci: pin system lib test to 20.04

#146 flavorjones closed 1 year ago
0
backport CI fixes to stay green with latest libxml2

#145 flavorjones closed 1 year ago
0
Loading order is causing issues

#144 sobrinho opened 1 year ago
9
tests: handle libxml 2.10.0 incorrectly-opened comment parsing

#143 flavorjones closed 2 years ago
0
Calling "Rails::Html::SafeListSanitizer.new(prune: true)" results in "ArgumentError (unknown keyword: :prune)"

#142 mayesgr closed 1 year ago
8
WhiteListSanitizer is sanitizing some contents of allowed attribute

#141 archonic closed 2 years ago
2