Skip to content

thumblemonks/inquisition

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits

lib

lib

 
 

shoulda_macros

shoulda_macros

 
 

test

test

 
 

.document

.document

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.rdoc

README.rdoc

 
 

Rakefile

Rakefile

 
 

VERSION.yml

VERSION.yml

 
 

inquisition.gemspec

inquisition.gemspec

 
 

Repository files navigation

Inquisition

Introduction

Inquisition will sanitize HTML as to help avoid cross site scripting attacks! It keeps your strings heresy-free.

How

Inquisition offers you three methods on Object:

cleanse_attr *attributes, options
cleanse_attr_reader *attributes, options
cleanse_attr_writer *attributes, options

These methods will wrap your getters and/or setters for an attribute through a HTML5 Sanitizer. This should help to protect against most kinds of cross site scripting attacks.

For example:

cleanse_attr :name, :allow => {:name => /(<strong>)/}

The above example will clean all values written to or read from the name attribute, but will not remove strong tags.

Installation 

sudo gem install thumblemonks-inquisition

Copyright

lib/html5lib_sanitize.rb Copyright © Jacques Distler

Everything else is Copyright © 2009 Alexander Rakoczy. See LICENSE for details.

About

Inquisition will sanitize HTML as to help avoid cross site scripting attacks! It keeps your strings heresy-free.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

1 star

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages