index
:
rails.git
3-2-stable-for-hmno
master
Mirror of official rails repo with custom fixes.
Harald Eilertsen
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
activesupport
/
lib
/
active_support
/
core_ext
/
string
/
output_safety.rb
Commit message (
Expand
)
Author
Age
Files
Lines
*
revise docs [ci skip]
Vijay Dev
2012-02-01
1
-1
/
+1
*
Move escaping regexps to constants
Carlos Antonio da Silva
2012-02-01
1
-2
/
+4
*
Move escape_once logic to ERB::Util, where it belongs to
Carlos Antonio da Silva
2012-02-01
1
-0
/
+15
*
No need to override the to_yaml method in ActiveSupporte::SafeBuffer
Rafael Mendonça França
2012-01-04
1
-5
/
+0
*
No need to check if YAML::ENGINE is defined since ruby 1.9 does that
Rafael Mendonça França
2012-01-04
1
-1
/
+1
*
We don't need a special html_escape for 1.8 anymore
Guillermo Iguaran
2011-12-21
1
-27
/
+15
*
Remove duplicate html_escape docs
Jeremy Kemper
2011-12-11
1
-10
/
+1
*
Use 1.9 native XML escaping to speed up html_escape and shush regexp warnings
Jeremy Kemper
2011-12-11
1
-15
/
+36
*
Restore performance of ERB::Util.html_escape
Jon Jensen
2011-12-03
1
-1
/
+1
*
ruby193: String#prepend is also unsafe
Akira Matsuda
2011-10-05
1
-1
/
+1
*
override unsafe methods only if defined on String
Akira Matsuda
2011-10-05
1
-10
/
+12
*
remove superfluous to_s in ERB::Util.html_escape
Alexey Vakhov
2011-09-24
1
-1
/
+1
*
fix incorrect comment
Vijay Dev
2011-09-22
1
-1
/
+1
*
Proper lines numbers for stack trace info
Santiago Pastorino
2011-09-16
1
-1
/
+1
*
revert the changes from c60995f3 - related to marking sub,gsub as unavailable...
Vijay Dev
2011-09-09
1
-20
/
+1
*
Revert removing gsub and sub from safe buffer.
José Valim
2011-09-08
1
-3
/
+3
*
this should have gone with the previous commit
Xavier Noria
2011-09-08
1
-4
/
+4
*
copy-edits a couple of exception messages
Xavier Noria
2011-09-08
1
-4
/
+4
*
better method documentation on disable safe string methods
Damien Mathieu
2011-09-08
1
-6
/
+12
*
make gsub and sub unavailable in SafeBuffers - Closes #1555
Damien Mathieu
2011-09-08
1
-3
/
+16
*
properly escape html to avoid invalid utf8 causing XSS attacks
Aaron Patterson
2011-08-16
1
-1
/
+1
*
Reset @dirty to false when slicing an instance of SafeBuffer
Brian Cardarella
2011-07-29
1
-0
/
+6
*
Merge branch 'master' of git://github.com/lifo/docrails
Xavier Noria
2011-07-05
1
-8
/
+8
|
\
|
*
document meta methods
Vijay Dev
2011-07-03
1
-8
/
+8
*
|
all numerics should be html_safe - Closes #1935
Damien Mathieu
2011-07-03
1
-1
/
+1
|
/
*
calling unsafe methods which don't return a string shouldn't fail
Damien Mathieu
2011-06-22
1
-2
/
+2
*
safe_concat should not work on dirty buffers.
José Valim
2011-06-16
1
-4
/
+13
*
Fix safe buffer by adding a dirty status.
José Valim
2011-06-16
1
-12
/
+24
*
Define ActiveSupport#to_param as to_str - closes #1663
Andrew White
2011-06-12
1
-0
/
+4
*
ensuring that json_escape returns html safe strings when passed an html safe ...
Aaron Patterson
2011-06-09
1
-1
/
+2
*
Prefer 'each' over 'for in' syntax.
Sebastian Martinez
2011-06-07
1
-1
/
+1
*
Ensure that the strings returned by SafeBuffer#gsub and friends aren't consid...
Michael Koziarski
2011-06-07
1
-0
/
+13
*
Revert "Merge pull request #275 from pk-amooma/master"
José Valim
2011-05-07
1
-2
/
+2
*
for escaping HTML can be treated as normal XML
Philipp Kempgen (Amooma)
2011-04-14
1
-2
/
+2
*
properly escape "'" to "'" for XML/HTML (BTW Erubis does that as well)
Philipp Kempgen (Amooma)
2011-04-14
1
-2
/
+2
*
s/ERb/ERB/g
Akira Matsuda
2011-04-03
1
-1
/
+1
*
Active Support typos.
R.T. Lechow
2011-03-05
1
-1
/
+1
*
Removed Array#safe_join in AS core_ext and moved it to a view helper with the...
Josh Kalderimis
2011-02-10
1
-31
/
+0
*
Revert "Removed Array#safe_join in AS core_ext and moved it to a view helper ...
José Valim
2011-02-10
1
-0
/
+31
*
Removed Array#safe_join in AS core_ext and moved it to a view helper with the...
Josh Kalderimis
2011-02-10
1
-31
/
+0
*
Corrected the html_safe implementation for Array. Moved the html safe version...
Josh Kalderimis
2011-02-10
1
-7
/
+22
*
Initial html_safe implemention for Array
Paul Hieromnimon
2011-02-10
1
-0
/
+16
*
make sure we play nicely when syck is activated
Aaron Patterson
2011-01-28
1
-5
/
+8
*
Psych correctly gets visitor for SafeBuffer from superclass
brainopia
2011-01-28
1
-2
/
+5
*
applies API conventions to the RDoc of json_encode
Xavier Noria
2010-11-20
1
-10
/
+12
*
Make safe_append= live on AV::OutputBuffer not AS::SafeBuffer
Michael Koziarski
2010-11-08
1
-1
/
+0
*
Added support for Erubis <%== tag
Jan Maurits Faber
2010-11-08
1
-0
/
+1
*
Merge branch 'master' of git://github.com/lifo/docrails
Xavier Noria
2010-10-19
1
-0
/
+6
|
\
|
*
json_escape makes json invalid doc change [#1485 state:resolved]
Neeraj Singh
2010-10-16
1
-0
/
+6
*
|
explains why ERB::Util#h is removed before being re-aliased
Xavier Noria
2010-10-18
1
-0
/
+1
|
/
[next]