8e3795c317
Update
2012-12-18 17:20:49 -07:00
80088832b9
Fix #587
...
The default behavior prevented linking to header anchors. id_prefix
can still be set to 'wiki-' however it is no longer the default.
2012-11-16 17:45:56 -07:00
776df4e6ee
Fix nokogiri rendering
...
https://github.com/sparklemotion/nokogiri/issues/782
2012-10-27 19:52:26 -06:00
9644d4b00e
dupe sanitization attrs initialized by constants, fixes #200
2012-05-06 12:07:41 -07:00
9a1dddaccf
whitelist apt uri schemes, fixes #233
2012-05-05 11:56:01 -07:00
02073f827b
add id to whitelisted attributes. The transformers still seem to work and prefix ids with wiki-. Uncommented relevant tests.
2012-04-23 20:08:24 +03:00
be4c52202c
remove contents of script and style elements
...
Avoids rendering HTML-ized CSS and/or Javascript by removing the
contents of script and style elements as well as the elements
themselves.
/cc @technoweenie
Pull Request: master
2012-01-08 22:07:33 -05:00
5163f11ecb
allow ftp and irc protocol links in wiki pages
2011-12-22 09:30:27 -07:00
cc96786ac0
Fix Wiki XSS vuln
2011-11-15 15:29:05 -06:00
2128559186
fix edge case where sanitize gem doesn't operate on <a> node if the custom transformer runs
2011-08-08 15:43:21 -07:00
cd4704aed7
prefix name attributes too
2011-08-08 15:02:10 -07:00
08a58b7520
Sanitization#id_prefix can be modified
2011-08-04 14:02:24 -07:00
b2d372ab3c
id attribute transformers should always return a hash or nil
2011-07-21 15:47:00 -07:00
c22050fca8
allow @id attributes but force a "wiki-" prefix
2011-05-04 11:50:38 -04:00
76064da131
A Gollum::Wiki saves Sanitize instances
2010-12-02 14:35:31 -08:00
4dda9fb2ae
tomdoc'd
2010-11-20 13:08:39 -08:00
3b94a6723c
integrate Sanitization class
2010-11-09 12:07:54 -08:00
26df05374c
provide customizable sanitization
2010-10-27 14:04:26 -04:00
bootstraponline
Corey Donohoe
Jussi Malinen
Jesse Newland
rick
Joshua Peek
Schuyler Duveen
7rans