lib/onebox/onebox_sanitize_config.rb in onebox-1.7.4 vs lib/onebox/onebox_sanitize_config.rb in onebox-1.7.5
- old
+ new
@@ -10,9 +10,10 @@
'audio' => %w[controls],
'embed' => %w[height src type width],
'iframe' => %w[allowfullscreen frameborder height scrolling src width],
'source' => %w[src type],
'video' => %w[controls height loop width],
+ 'div' => [:data], # any data-* attributes
),
protocols: merge(RELAXED[:protocols],
'embed' => { 'src' => HTTP_PROTOCOLS },
'iframe' => { 'src' => HTTP_PROTOCOLS },