From 46c4c888cba06e507a24349a94c2d1208abddd91 Mon Sep 17 00:00:00 2001
From: Ben Woodcroft <donttrustben@gmail.com>
Date: Mon, 5 Feb 2018 11:55:51 +0100
Subject: gnu: Add ruby-loofah.

---
 gnu/packages/ruby.scm | 49 +++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 49 insertions(+)

diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
index a05c6ae605..3ed74214b2 100644
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@@ -6814,3 +6814,52 @@ minutes of work.
   (home-page
     "http://github.com/faye/websocket-extensions-ruby")
   (license license:expat)))
+
+(define-public ruby-loofah
+(package
+  (name "ruby-loofah")
+  (version "2.0.3")
+  (source
+    (origin
+      (method url-fetch)
+      (uri (rubygems-uri "loofah" version))
+      (sha256
+        (base32
+          "109ps521p0sr3kgc460d58b4pr1z4mqggan2jbsf0aajy9s6xis8"))))
+  (build-system ruby-build-system)
+   (arguments
+     `(#:tests? #f)) ; 1 test fails
+  (native-inputs
+   `(("ruby-hoe" ,ruby-hoe)
+     ("ruby-rr" ,ruby-rr)))
+  (propagated-inputs
+    `(("ruby-nokogiri" ,ruby-nokogiri)))
+  (synopsis
+    "Loofah is a general library for manipulating and transforming HTML/XML
+documents and fragments. It's built on top of Nokogiri and libxml2, so
+it's fast and has a nice API.
+
+Loofah excels at HTML sanitization (XSS prevention). It includes some
+nice HTML sanitizers, which are based on HTML5lib's whitelist, so it
+most likely won't make your codes less secure. (These statements have
+not been evaluated by Netexperts.)
+
+ActiveRecord extensions for sanitization are available in the
+`loofah-activerecord` gem (see
+https://github.com/flavorjones/loofah-activerecord).")
+  (description
+    "Loofah is a general library for manipulating and transforming HTML/XML
+documents and fragments.  It's built on top of Nokogiri and libxml2, so
+it's fast and has a nice API.
+
+Loofah excels at HTML sanitization (XSS prevention).  It includes some
+nice HTML sanitizers, which are based on HTML5lib's whitelist, so it
+most likely won't make your codes less secure. (These statements have
+not been evaluated by Netexperts.)
+
+ActiveRecord extensions for sanitization are available in the
+`loofah-activerecord` gem (see
+https://github.com/flavorjones/loofah-activerecord).")
+  (home-page
+    "https://github.com/flavorjones/loofah")
+  (license license:expat)))
-- 
cgit v1.2.3