search for: loofah

Displaying 4 results from an estimated 4 matches for "loofah".

2010 Feb 02
0
[Security] Loofah has an HTML injection / XSS vulnerability, please upgrade to 0.4.6
Synopsis ---------- Loofah::HTML::Document#text emits unencoded HTML entities prior to 0.4.6. This was originally by design, since the output of #text is intended to be used in a non-HTML context (such as generation of human-readable text documents). However, Loofah::XssFoliate''s default behavior and Loofah::Helper...
2009 Oct 13
1
loofah 0.3.1 Released
loofah version 0.3.1 has been released! * <http://loofah.rubyforge.org> * <http://rubyforge.org/projects/loofah> * <http://github.com/flavorjones/loofah> Loofah is an HTML sanitizer. It will always fix broken markup, but can also sanitize unsafe tags in a few different ways, and transf...
2013 Jun 06
0
Using Loofah to gain control of what HTML tags get sanitized
Hi everyone I''m Kasper. One part of<http://weblog.rubyonrails.org/2013/5/27/rails-google-summer-of-code-projects/> the Rails Google Summer of Code participants. This means I will replace the venerable html-scanner with Loofah, picking up where this issue left off: https://github.com/rails/rails/issues/2550. Rafael França was assigned to that issue and he is my mentor during the summer. I want to hear your thoughts about a new API that will take advantage of Loofahs custom scrubbers. Here''s the example I gav...
2013 Mar 27
1
remove all html tag before validation
hi, is there a clean way to remove all html tag of all attributes before validation I found acts_as_sanitized that seemed to be perfect, but for rails 2 :-s thanks -- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To unsubscribe from this group and stop receiving emails from it, send an email to