| Commit message (Expand) | Author | Age | Files | Lines |
* | Move action_controller/vendor/html-scanner to action_view | Piotr Sarnacki | 2012-08-28 | 6 | -1736/+0 |
* | load active_support/core_ext/class/attribute in active_support/rails | Xavier Noria | 2012-08-02 | 1 | -1/+0 |
* | Move require to where it's needed | Santiago Pastorino | 2012-05-11 | 1 | -0/+1 |
* | Fix HTML sanitizer allowed_css_properties comment | Alexey Vakhov | 2012-04-13 | 1 | -1/+1 |
* | Don't ignore non Enumerable values passed to sanitize (closes #5585) | Piotr Sarnacki | 2012-03-27 | 1 | -0/+11 |
* | Handle leading spaces in protocol while sanitizing | Manu | 2012-01-12 | 1 | -1/+1 |
* | deprecate String#encoding_aware? and remove its usage | Sergey Nartimov | 2011-12-24 | 1 | -1/+1 |
* | HTMl -> HTML: html scanner comment fix | Alexey Vakhov | 2011-10-15 | 1 | -1/+1 |
* | add missing require to html sanitizer | Alexey Vakhov | 2011-09-27 | 1 | -0/+1 |
* | Tags with invalid names should also be stripped in order to prevent | Aaron Patterson | 2011-08-16 | 1 | -1/+1 |
* | Remove extra white spaces on ActionPack docs. | Sebastian Martinez | 2011-05-23 | 1 | -1/+1 |
* | Merge pull request #280 from jballanc/frozen-string-strip-tags | José Valim | 2011-05-07 | 1 | -1/+1 |
|\ |
|
| * | Fix for stripping tags from frozen strings. | Joshua Ballanco | 2011-04-14 | 1 | -1/+1 |
* | | document HTML::Selector's :has(string) pseudo class | misfo | 2011-04-23 | 1 | -0/+2 |
|/ |
|
* | ActionController::Base.helpers.sanitize ignores case in protocol | Timothy N. Tsvetkov | 2010-12-30 | 1 | -1/+1 |
* | class inheritable attributes is used no more! all internal use of class inher... | Josh Kalderimis | 2010-11-20 | 1 | -2/+2 |
* | Remove more warnings shadowing outer local variable. | Emilio Tagua | 2010-09-27 | 1 | -3/+3 |
* | Remove more warnings shadowing outer local variable. | Emilio Tagua | 2010-09-27 | 1 | -3/+3 |
* | Refactor methods in html node to avoid injects. | Emilio Tagua | 2010-09-22 | 1 | -8/+4 |
* | Use join instead of looping and calling to_s [#5492 state:resolved] | Thiago Pradi | 2010-09-01 | 1 | -3/+1 |
* | Deletes trailing whitespaces (over text files only find * -type f -exec sed '... | Santiago Pastorino | 2010-08-14 | 5 | -65/+65 |
* | Strip_tags never ending attribute should not raise a TypeError [#4870 state:r... | Bruno Michel | 2010-06-28 | 2 | -0/+2 |
* | regular expressions are usually ASCII-encoded, so force_encoding the content ... | wycats | 2010-06-07 | 1 | -0/+1 |
* | html-scanner uses Set and class_inheritable_accessor | Jeremy Kemper | 2009-05-30 | 1 | -0/+3 |
* | Ensure WhiteListSanitizer allows dl tag [#2393 state:resolved] | Jeffrey Chupp | 2009-05-17 | 1 | -1/+1 |
* | Ensure assert_select works with XML namespaced attributes [#1547 state:resolv... | Pratik Naik | 2009-03-07 | 1 | -1/+1 |
* | Fixed the sanitize helper to avoid double escaping already properly escaped e... | David Heinemeier Hansson | 2008-11-06 | 1 | -1/+1 |
* | Fix incorrect closing CDATA delimiter. Add tests for CDATA nodes. | Jeffrey Hardy | 2008-10-23 | 1 | -1/+1 |
* | Fix that HTML::Node.parse would blow up on unclosed CDATA sections. | Jeffrey Hardy | 2008-10-23 | 1 | -1/+8 |
* | Merge with docrails. | Pratik Naik | 2008-07-16 | 1 | -2/+2 |
* | Patched HTML::Document#initialize call to Node.parse so that it includes the ... | Jimmy Baker | 2008-06-24 | 1 | -1/+1 |
* | Fixed HTML::Tokenizer (used in sanitize helper) didnt handle unclosed CDATA t... | David Heinemeier Hansson | 2008-03-28 | 1 | -1/+1 |
* | Fix HTML Sanitizer to allow trailing spaces in CSS style attributes. Closes ... | Rick Olson | 2007-12-23 | 1 | -2/+2 |
* | Removed some of the tags that does not make sense to allow per default in the... | David Heinemeier Hansson | 2007-12-04 | 1 | -2/+2 |
* | Refactor sanitizer helpers into HTML classes and make it easy to swap them ou... | Rick Olson | 2007-11-26 | 2 | -0/+174 |
* | Fixed spelling errors (closes #9706) [tarmo/rmm5t] | David Heinemeier Hansson | 2007-09-28 | 1 | -1/+1 |
* | [html-scanner] Fix parsing of empty tags. Closes #7641. [anthony.bailey] | Michael Koziarski | 2007-09-21 | 1 | -0/+3 |
* | Back out of [7300] -- it screwed up nested XML | David Heinemeier Hansson | 2007-08-21 | 1 | -3/+0 |
* | Ignore processing instructions when parsing html | Michael Koziarski | 2007-08-10 | 1 | -0/+3 |
* | Add much-needed html-scanner tests. Fixed CDATA parsing bug. [Rick] | Rick Olson | 2007-02-04 | 1 | -3/+1 |
* | Use a consistent load path to avoid double requires. Fix some scattered Ruby ... | Jeremy Kemper | 2007-01-28 | 2 | -9/+13 |
* | Nodoc the irrelevant (from 1.2) | David Heinemeier Hansson | 2007-01-26 | 1 | -1/+2 |
* | Fix HTML::Node to output double quotes instead of single quotes. Closes #684... | Rick Olson | 2006-12-14 | 1 | -1/+1 |
* | Fix assert_tag so that :content => "foo" does not match substrings, but only ... | Jamis Buck | 2006-09-10 | 1 | -1/+1 |
* | Added assert_select* for CSS selector-based testing (deprecates assert_tag) #... | David Heinemeier Hansson | 2006-09-03 | 2 | -0/+823 |
* | Cleanup assert_tag :children counting. Closes #2181. | Jeremy Kemper | 2006-09-03 | 1 | -1/+0 |
* | allow -'s in tag names for html scanner when scanning AR xml documents | Rick Olson | 2006-04-22 | 1 | -1/+1 |
* | Remove insignificant classes from docs | David Heinemeier Hansson | 2005-12-08 | 1 | -1/+1 |
* | Allow assert_tag(:conditions) to match the empty string when a tag has no chi... | Jamis Buck | 2005-11-21 | 2 | -2/+8 |
* | Update html-scanner to handle CDATA sections better. Closes #2970. [Jamis Buck] | Jamis Buck | 2005-11-21 | 2 | -0/+16 |