Skip to content

kaspth/rails-deprecated_sanitizer

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
lib
 
 
test
 
 
.gitignore
 
 
.travis.yml
 
 
CHANGELOG.md
 
 
Gemfile
 
 
LICENSE.txt
 
 
README.md
 
 
Rakefile
 
 
rails-deprecated_sanitizer.gemspec
 
 
Rails::Deprecated::Sanitizer Reporting XSS Security Issues

README.md

Rails::Deprecated::Sanitizer

In Rails 4.2 HTML sanitization has been rewritten using a more secure library.

This gem includes the old behavior shipping with Rails 4.2 and before. It is strictly provided to ease migration. It will be supported until Rails 5.

To downgrade add gem 'rails-deprecated_sanitizer' to your Gemfile.

See the Rails 4.2 upgrade guide for more information.

You can read more about the new sanitization implementation here: rails-html-sanitizer.

Reporting XSS Security Issues

The code provided here deals with XSS attacks and is therefore a security concern. So if you find a security issue please follow the regular security reporting guidelines.

About

Deprecated sanitizer API extracted from Action View.

Resources

Readme

License

MIT license

Stars

0 stars

Watchers

2 watching

Forks

17 forks

Releases

No releases published

Packages

No packages published

Contributors 5

Languages