Giters
rails
/
rails-html-sanitizer
Geek Repo:
Geek Repo
Github PK Tool:
Github PK Tool
Stargazers:
299
Watchers:
28
Issues:
72
Forks:
82
rails/rails-html-sanitizer Issues
Add an option to use `to_text` instead of `to_html` to `FullSanitizer`
Updated
2 months ago
Comments count
13
explore: using rgrove/sanitize as the underlying sanitizer
Updated
2 months ago
HTML5 SafeListSanitizer removes 'viewbox' even when allowed_attribute
Closed
9 months ago
Comments count
2
Should 'class' be removed from the default safe list for attributes?
Closed
a year ago
Comments count
1
Nuanced rules when santising? (to enable other attributes like target + rel)
Closed
a year ago
Comments count
4
The sanitization method changes the tag structure if there is a `<table>` tag inside an `<a>` tag.
Closed
a year ago
Comments count
3
Please add required_ruby_version to gemspec
Closed
a year ago
Comments count
3
In the sanitize method, the value of the `multiple` attribute of the html tag is missing.
Closed
a year ago
Comments count
2
Full sanitizer does not escape quotes
Closed
a year ago
Comments count
5
removing HTML comments
Closed
7 years ago
Comments count
6
Calling "Rails::Html::SafeListSanitizer.new(prune: true)" results in "ArgumentError (unknown keyword: :prune)"
Closed
a year ago
Comments count
8
Private reporting of a potential security vulnerability
Closed
2 years ago
Comments count
6
xss vulnerability in data URI
Closed
2 years ago
Comments count
2
Loading order is causing issues
Updated
2 years ago
Comments count
8
`strip_tags(input).html_safe? # => false to true` ?
Closed
2 years ago
Comments count
8
WhiteListSanitizer is sanitizing some contents of allowed attribute
Closed
2 years ago
Comments count
2
allow script tag
Closed
2 years ago
Comments count
3
Change in behavior caused by Nokogiri 1.13.5
Closed
2 years ago
Comments count
2
Explore test failures with nokogiri v1.13.2
Closed
2 years ago
Comments count
1
test failures when using loofah 2.13.0 and nokogiri 1.12.5
Closed
2 years ago
Comments count
7
Debian packaging 1.2.0: test issues
Closed
5 years ago
Comments count
7
PermitScrubber treats ProcessingInstructions as Elements
Closed
3 years ago
Comments count
2
WhitelistSanitizer manipulating URLs
Closed
3 years ago
Comments count
2
Style attributed not included in SafeListSanitizer.allowed_attributes
Closed
3 years ago
Comments count
2
Problem trying to whitelist rgb color within style attribute
Closed
3 years ago
Comments count
2
test failures against current loofah/nokogiri
Closed
3 years ago
Comments count
6
version 1.3.0 XSS Vulnerability
Closed
4 years ago
Comments count
4
iframe are scrubbed by default?
Closed
3 years ago
Comments count
3
Unable to whitelist css variables
Closed
4 years ago
Comments count
1
XSS vulnerability v1.2.0
Closed
5 years ago
Comments count
2
Deprication warnings with loofah 2.3.0
Closed
5 years ago
Comments count
1
Loofah::HTML5::WhiteList is deprecated
Closed
5 years ago
Comments count
2
How to migrate to new sanitizer
Closed
5 years ago
Comments count
5
4.2.5.1 #sanitize whitelist changes vs Rails::Html::WhiteListSanitizer docs
Closed
6 years ago
Comments count
6
loofah - CVE-2018-16468
Closed
6 years ago
Comments count
1
Upgrade loofah dependency to 2.2.3
Closed
6 years ago
test failures with new loofah (2.2.1)
Closed
6 years ago
Comments count
2
Environment-based sanitizer difference with open lt tags
Closed
6 years ago
Comments count
6
Tests failing with libxml2-2.9.3
Closed
6 years ago
Comments count
2
rails-html-sanitizer 1.0.3 crashes with both ruby 2.3.0p0 & ruby 2.2.2p95
Closed
6 years ago
Comments count
4
FullSantitizer de-escapes escaped HTML entities besides &, <, >
Closed
7 years ago
Comments count
3
`sanitize` inserts unintended whitespace
Closed
7 years ago
Comments count
1
Stripping of comments
Closed
7 years ago
Comments count
3
Help with a text
Closed
7 years ago
Comments count
1
Sanitize method adds line breaks where they do not exist
Closed
8 years ago
Comments count
1
Unfinished open tag being escaped
Closed
8 years ago
Comments count
2
Unexpected change in sanitize
Closed
8 years ago
Comments count
1
Custom Scrubber allowed_node? not being invoked!!!
Closed
8 years ago
Comments count
7
Data URI's get sanitized
Closed
8 years ago
Comments count
3
Allow "tel:" links
Closed
8 years ago
Comments count
1
Previous
Next