11 lines
510 B
Text
11 lines
510 B
Text
Loofah is a general library for manipulating and transforming HTML/XML
|
|
documents and fragments, built on top of Nokogiri.
|
|
|
|
Loofah excels at HTML sanitization (XSS prevention). It includes some nice HTML
|
|
sanitizers, which are based on HTML5lib's safelist, so it most likely won't
|
|
make your codes less secure. (These statements have not been evaluated by
|
|
Netexperts.)
|
|
|
|
ActiveRecord extensions for sanitization are available in the
|
|
[`loofah-activerecord`
|
|
gem](https://github.com/flavorjones/loofah-activerecord).
|