Loofah 0.3.1 Released

loofah version 0.3.1 has been released!

Loofah is an HTML sanitizer. It will always fix broken markup, but
can also sanitize unsafe tags in a few different ways, and transform
the markup for storage or display.

It’s built on top of Nokogiri and libxml2, so it’s fast. And it uses
html5lib’s whitelist, so it most likely won’t make your codes less
secure. *

* These statements have not been evaluated by Netexperts.

== CHANGES in 0.3.1

Bug fixes:

  • Scrubbed Documents properly render html, head and body tags when



Loofah is the only ruby XSS/sanitization library that guarantees
well-formed and valid markup.

Also, it’s pretty fast. Here is a benchmark comparing Loofah to other
commonly-used libraries:

On Mon, Oct 12, 2009 at 21:17, Mike D. [email protected]

loofah version 0.3.1 has been released!

what a great name!

good stuff!