JavaScript content type

Question

JavaScript content type

nburkley opened this issue 11 years ago · 3 comments

I'm just wondering why application/json and application/js aren't sanitizable content types?
https://github.com/whitequark/rack-utf8_sanitizer/blob/master/lib/rack/utf8_sanitizer.rb#L26

I have some character encoding issues in my application from js reqeusts that aren't covered with rack-utf8_sanitizer. Is there a specific reason for this?

Answer 1 · 2014-06-18T15:16:37.000Z

I was thinking of adding them, actually.

I, myself, have an initializer right now with

Rack::UTF8Sanitizer::SANITIZABLE_CONTENT_TYPES.concat %w[
  application/json
  text/javascript
]

Answer 2 · 2014-06-18T15:19:33.000Z

As to a reason, it was a new feature and I was being conservative, though provided a 'hook' to add them in the meantime.

Answer 3 · 2014-06-18T15:23:44.000Z

Great, thanks for the info.