Simple_sanitizer_html is a project mainly written in Ruby, based on the MIT license.
a simple plugin for rails for escape html into model after save records
SimpleSanitizerHtml is a small plugin for Rails for escape html into the model after save records.
For example you have the following model
class Post simple_sanitizer_html
end
so, if you add a post like that
$ ruby script/console Loading development environment (Rails 2.3.2) p >> p = Post.new => #<Post id: nil, title: nil, copy: nil, created_at: nil, updated_at: nil>
p.title = "" => "" p.save => true p.title => "<script>alert('hi tuquito')</script>"
this plugin can be useful for prevent XSS Injection or styles attacks
Copyright (c) 2009 [chebyte - http://www.chebyte.com.ar], released under the MIT license