summaryrefslogtreecommitdiffstats
path: root/test/unit/lib/redmine/helpers/url_test.rb
diff options
context:
space:
mode:
Diffstat (limited to 'test/unit/lib/redmine/helpers/url_test.rb')
-rw-r--r--test/unit/lib/redmine/helpers/url_test.rb14
1 files changed, 7 insertions, 7 deletions
diff --git a/test/unit/lib/redmine/helpers/url_test.rb b/test/unit/lib/redmine/helpers/url_test.rb
index d927fd0a6..09d9b6c03 100644
--- a/test/unit/lib/redmine/helpers/url_test.rb
+++ b/test/unit/lib/redmine/helpers/url_test.rb
@@ -42,7 +42,7 @@ class URLTest < ActiveSupport::TestCase
"mailto:foo@example.org",
" http://example.com/",
"",
- "/javascript:alert(\'filename\')",
+ "/javascript:alert('filename')",
]
def test_uri_with_link_safe_scheme_should_recognize_safe_uris
@@ -52,18 +52,18 @@ class URLTest < ActiveSupport::TestCase
end
LINK_UNSAFE_URIS = [
- "javascript:alert(\'XSS\');",
- "javascript :alert(\'XSS\');",
- "javascript: alert(\'XSS\');",
- "javascript : alert(\'XSS\');",
- ":javascript:alert(\'XSS\');",
+ "javascript:alert('XSS');",
+ "javascript :alert('XSS');",
+ "javascript: alert('XSS');",
+ "javascript : alert('XSS');",
+ ":javascript:alert('XSS');",
"javascript&#58;",
"javascript&#0058;",
"javascript&#x3A;",
"javascript&#x003A;",
"java\0script:alert(\"XSS\")",
"java\script:alert(\"XSS\")",
- " \x0e javascript:alert(\'XSS\');",
+ " \x0e javascript:alert('XSS');",
"data:image/png;base64,foobar",
"vbscript:foobar",
"data:text/html;base64,foobar",
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-29 18:24:35 +0000