Module: Gem::SafeYAML

Defined in:: lib/rubygems/safe_yaml.rb

Overview

This module is used for safely loading YAML specs from a gem. The ‘safe_load` method defined on this module is specifically designed for loading Gem specifications. For loading other YAML safely, please see Psych.safe_load

Constant Summary collapse

PERMITTED_CLASSES =

%w[
  Symbol
  Time
  Date
  Gem::Dependency
  Gem::Platform
  Gem::Requirement
  Gem::Specification
  Gem::Version
  Gem::Version::Requirement
].freeze

PERMITTED_SYMBOLS =

%w[
  development
  runtime
].freeze

Class Method Summary collapse

.load(input) ⇒ Object
.safe_load(input) ⇒ Object

Class Method Details

.load(input) ⇒ `Object`



32
33
34

# File 'lib/rubygems/safe_yaml.rb', line 32

def self.load(input)
  ::Psych.safe_load(input, permitted_classes: [::Symbol])
end

.safe_load(input) ⇒ `Object`



28
29
30

# File 'lib/rubygems/safe_yaml.rb', line 28

def self.safe_load(input)
  ::Psych.safe_load(input, permitted_classes: PERMITTED_CLASSES, permitted_symbols: PERMITTED_SYMBOLS, aliases: true)
end