Module: Vidibus::Xss::Extensions::String
- Defined in:
- lib/vidibus/xss/extensions/string.rb
Instance Method Summary collapse
-
#escape_xss ⇒ Object
Prepares XSS content for rendering.
Instance Method Details
#escape_xss ⇒ Object
Prepares XSS content for rendering.
7 8 9 10 11 12 13 14 15 16 17 18 |
# File 'lib/vidibus/xss/extensions/string.rb', line 7 def escape_xss regexp = { /^\/\/.+$/ => '', # remove comments # /\n\s*/ => '', # trim indentation and remove linebreaks /\/\/\<!\[CDATA\[(.*?)\/\/\]\]\>/ => "\\1" # remove //<![CDATA[...content...//]]> } c = clone for s, r in regexp c.gsub!(s,r) end c end |