search for: xss_terminate

...'m using RVM with what I think are all the appropriate gems installed. The application works fine on co-workers OSX machines. When running db:migrate I get the following error: $ rake db:migrate --trace ... rake aborted! An error has occurred, all later migrations canceled: undefined method `xss_terminate'' for #<Class:0x7f333e5759e0> /home/martron/.rvm/gems/ruby-1.8.7-p330@orba/gems/activerecord-2.3.5/lib/active_record/base.rb:1959:in `method_missing_without_paginate'' /home/martron/.rvm/gems/ruby-1.8.7-p330@orba/gems/mislav-will_paginate-2.3.11/lib/will_paginate/finder.rb:170...

I use a call to the sanitize method every time I render some user input, but it would be much nicer if I could clean it up once before putting it into the database and avoid having to call the (relatively expensive) sanitize every time I render a page. My first thought was to just add something like: def message=(x) self[:message]=sanitize(x) end However, the sanitize helper cannot be called

i found the following functions or method to escape HTML, URL params, or Javascript data: <%= h @ha %> <%= sanitize @ha %> <%= u @ha %> <%= @ha.to_json %> <%= strip_tags @ha %> are they more functions or methods to do these things? and are there alternative ways to do that? thanks. -- Posted via http://www.ruby-forum.com/.

...ration like rake db:migrate VERSION=20100714122104 I got warning like DEPRECATION WARNING: Rake tasks in vendor/plugins/delayed_job/tasks, vendor/plugins/paperclip/tasks, vendor/plugins/seed-fu/tasks, vendor/plugins/simple_captcha/tasks, vendor/plugins/tabs_on_rails/tasks, and vendor/plugins/xss_terminate/tasks are deprecated. Use lib/tasks instead. (called from /usr/lib/ruby/gems/1.8/gems/rails-2.3.8/lib/tasks/rails.rb:10) I would like to know why this message shown? Is it any problem? If it is, how to resolve it? Thanks -- Posted via http://www.ruby-forum.com/. -- You received this mess...

...* _Whitewash_ the markup, removing all attributes and namespaced nodes. * Format the markup as plain text. * Replacements for Rails''s +strip_tags+ and +sanitize+ helper methods. * TWO! Count them, TWO! ActiveRecord extensions:   * Loofah::XssFoliate (an XssTerminate[http://github.com/look/xss_terminate/tree/master] drop-in replacement) is an *opt-out* sanitizer; by default all models and attributes are sanitized.   * Loofah::ActiveRecordExtension is an *opt-in* sanitizer; you must explicitly declare attributes to be sanitized. * 99 44/100 % pure == COMPARE AND CONTRAST Loofah is the only ruby X...