Update Loofah from 2.2.3 to 2.3.1

Description

We need to update the Loofah gem from 2.2.3 to 2.3.1 due to a vulnerability:

Testing

  • Post a new chapter of a work and make sure the chapter summary has all HTML stripped out of it in the subscription email (HTML version of the email)

  • Post a new work and make sure the work summary has all HTML stripped out of it in the subscription email (HTML version of the email)

  • Log in as a tag wrangler and post a comment on a tag that uses HTML. Then go to the Tag Wrangling discussion page at https://test.archiveofourown.org/tag_wranglings/discuss (if it loads on staging... it doesn't appear to want to for me) and make sure that when you hover over a table cell that links to a comment, the title that appears contains the full text of your comment, minus the HTML

  • Submit an abuse report that uses HTML, and make sure that when you are emailed a copy of the report, the plain text email does not include HTML

Environment

None

Status

Assignee

Unassigned

Reporter

Sarken

Roadmap

Misc

Priority

Medium

Affects versions

Fix versions

Components

BackEnd

Difficulty

Easy

Required Access Level

None

Epic Link

Milestone

Internal 0.9
Configure