Displaying 20 results from an estimated 90 matches similar to: "loofah 0.3.1 Released"
2010 Feb 02
0
[Security] Loofah has an HTML injection / XSS vulnerability, please upgrade to 0.4.6
Synopsis
----------
Loofah::HTML::Document#text emits unencoded HTML entities prior to
0.4.6. This was originally by design, since the output of #text is
intended to be used in a non-HTML context (such as generation of
human-readable text documents).
However, Loofah::XssFoliate''s default behavior and
Loofah::Helpers#strip_tags
both use #text to strip tags out of the output, meaning that
2013 Jun 06
0
Using Loofah to gain control of what HTML tags get sanitized
Hi everyone
I''m Kasper. One part of<http://weblog.rubyonrails.org/2013/5/27/rails-google-summer-of-code-projects/> the
Rails Google Summer of Code participants. This means I will replace the
venerable html-scanner with Loofah, picking up where this issue left off:
https://github.com/rails/rails/issues/2550. Rafael França was assigned to
that issue and he is my mentor during the
2010 Jan 26
1
Does Amazon.com block scraping?
Hi there
Does anyone know if Amazon.com has any sort of server side script that tries
to block scraping activities? I first noticed that if I didn?t change the
agent alias, it would fetch a page exactly like the normal one, but without
the intial search field(maybe a silly way to prevent scraping). Then after
it, I changed to some other alias, and submit a search. I got the result
page as
2010 Jan 25
4
Does Amazon.com blocks scraping?
Hi there
Does anyone know if Amazon.com has any sort of server side script that tries
to block scraping activities? I first noticed that if I didn?t change the
agent alias, it would fetch a page exactly like the normal one, but without
the intial search field(maybe a silly way to prevent scraping). Then after
it, I changed to some other alias, and submit a search. I got the result
page as
2008 Jun 12
1
setting request headers via get()
Hey all,
Found a email thread from Jan 2007 discussing the inability to set request
headers (like ETag and If-Modified-Since) through the API, and this is
something that''s bothering me a bit. Currently the "way" to do this is to
subclass Mechanize and override set_headers(). That seems fine for headers
that you''d like to send in every request or for classes of request,
2013 Mar 27
1
remove all html tag before validation
hi,
is there a clean way to remove all html tag of all attributes before
validation
I found acts_as_sanitized that seemed to be perfect, but for rails 2 :-s
thanks
--
You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
2008 Jan 15
0
mechanize 0.7.0 Released
mechanize version 0.7.0 has been released!
* <http://mechanize.rubyforge.org/>
The Mechanize library is used for automating interaction with websites.
Mechanize automatically stores and sends cookies, follows redirects,
can follow links, and submit forms. Form fields can be populated and
submitted. Mechanize also keeps track of the sites that you have
visited as a history.
Changes:
#
2010 Jun 10
0
strange problem:no such file to load -- nokogiri on rails3
I am test the script named test.rb by command "ruby test.rb" and it
pass.
Then i converte it as rake task.
The rake task pass on rails 2.3.4 but fail on rails 3 beta4 with error
msg:
"no such file to load -- nokogiri"
============================
env :rails 3 beta4, ruby 1.8.7, ubuntu
============================
test.rb
============================
require
2006 Nov 30
0
Mongrel Service 0.3.1, basic process monitoring
Hello Folks,
I tried create a valid gem repository under windows without luck
(rubygems show problem with CRLF/LF line endings between *nix and
windows).
Anyway, I''ve uploaded a new gem to my webpage:
http://www.mmediasys.com/releases/mongrel_service-0.3.1-mswin32.gem
Whats new?
Beside the things added in previous announcement [1], this version add
basic process monitoring.
What
2006 May 04
0
Using ActiveRBAC 0.3.1 to restrict entire site?
All,
I''m trying Active_rbac for the first time.
I have the basics working so I can protect a single controller.
I want to protect all of my controllers so users have to login to see anything.
I''m trying to put a before_filter in my application controller, but I
don''t know how to do the except correctly. I''ve been trying this:
class ApplicationController
2008 Nov 20
0
[ANNOUNCE] xcb-util 0.3.1
xcb-util 0.3.1 is now available
git tag 0.3.1
Changelog
=========
Henning Sten (2):
introduce function xcb_atom_get (essentially a synchronous xcb_intern_atom, use it only on non-performance critical execution paths)
add more verbose explanation of the purpose of "encoding" parameter in doxygen documentation tag
Julien Danjou (5):
icccm: add some comment on text
2009 Apr 23
0
HDT 0.3.1
Hello !
The first public release of the newest 0.3.x branch is out !
HDT 0.3.1 is now available for download :
http://syslinux.zytor.com/wiki/index.php/Hdt_(Hardware_Detection_Tool)#Download
Since the last official release (0.2.7 in syslinux 3.75) here come the
main changes :
1?) A huge work from pam to rework the CLI.
The code is far more scalable and easy to use for developers to extend it.
2007 Sep 05
0
ANNOUNCEMENT: Asterisk-Java 0.3.1 released
Asterisk-Java 0.3.1, a free Java library for Asterisk PBX integration,
has been released.
The Asterisk-Java package consists of a set of Java classes that allow
you to easily build Java applications that interact with an Asterisk
PBX Server. Asterisk-Java supports both interfaces that Asterisk
provides for this scenario: The FastAGI protocol and the Manager API.
Asterisk-Java 0.3.1 is a
2003 Nov 06
1
Must I remove gnome-kerberos-0.3.1-9?
I managed to setup samba3.0 as a win2k domain member, and modified smb.conf & krb5.conf.
But when I try kinit administrator@domain, I got an error.
--> kinit(v5):KDC has no support for encryption type while getting initial credentials
I found gnome-kerberos-0.3.1-9 was shipped with RH9. Did it support all kerberos function Samba3 need?
Must I remove it and install MIT or Heimdal
2001 Aug 14
1
VorbisExt 0.3.1 released (UU2685608)
** THE RETURN ADDRESSES ON THIS LETTER HAVE BEEN SET TO PREVENT MAIL **
** LOOPS IN THE EVENT YOU ARE RUNNING SOFTWARE WHICH AUTO-REPLIES TO **
** INBOUND MAIL. WORLDCOM WILL NOT SEE ANY REPLY SENT TO THIS LETTER. **
Dear Customer,
We have received your message ("[vorbis] VorbisExt 0.3.1 released") and
forwarded it to the appropriate personnel for processing.
To help us provide
2003 Sep 13
1
R 1.8.0 (to be) and RPy 0.3.1
I look every now and then at RPy. It is not yet a Debian package as it
had the odd problem here or there -- initially an Atlas interaction,
currently something with long_jump() which cannot be found when R's dynamic
library is loaded. [1] It is called R_eval.c:
/* Abort the current R computation and signal a KeyboardInterrupt
exception */
void interrupt_R(int signum)
{
interrupted = 1;
2004 Aug 25
1
Problem of set up asterisk-1.0-RC2.tar.gz with asterisk-prepaid-0.3.1
Hi Hekuran
I have installed asterisk-1.0-RC2.tar.gz, asterisk-prepaid-0.3.1 and
postgresql. When I tried to call from any IAX client to another IAX client
and also sip client to sip client it worked fine. And also the cdr table
filled properly.
Now I tried to configure asterisk-prepaid-0.3.1 with asterisk. I have
compiled asterisk-prepaid-0.3.1 and also copy the configure file.
I
2006 Dec 21
2
mongrel_service-0.3.1 problems - service will not start
Hey, I just finished a round of testing my app with mongrel-1.0rc1
(pretty good, four segfaults and a gc error in maybe ten thousands
requests) and was moving on to mongrel_service to see if it could cope
with said segfaults and gc errors. Sadly, the service will not start. I
installed using:
mongrel_rails service::install -N nplrails -e development -p 3000
claims to be happy. When I try to
2004 May 24
1
Chan_capi 0.3.1 , Asterisk , 3 x C4 active ISDN card Segmentation fault
Hi,
i use chan_capi 0.3.1 with asterisk (stable branch cvs) and 3 x c4
active ISDN card.
From Controller 1 - 7 there are no problems making calls between
asterisk and the pstn.
But when i make calls from controller 8 - 12 i get on every controller
(8 - 12) a segmentation fault in asterisk :(
I tried different linux distributions (gentoo 2004.1, redhat 9.0 , suse
9.1) but same error.
2004 Dec 10
5
win32-process 0.3.1 is out
Hi all,
Just wanted to let you know that I released 0.3.1 last night. This
addresses Bug #712 and incorporates Patches #1087 and #1137 (thanks
Aslak).
I''ll try to get an open4 implementation out this weekend, though I
noticed that Aslak''s patch is different than what Park originally had,
so I''ll have to decide which I prefer, or if they can be blended
somehow.