{"id":22281199,"url":"https://github.com/zvory/csv-safe","last_synced_at":"2025-04-07T13:06:49.125Z","repository":{"id":32787665,"uuid":"142630398","full_name":"zvory/csv-safe","owner":"zvory","description":"Decorate the ruby CSV library to sanitize output CSV against CSV injection attacks.","archived":false,"fork":false,"pushed_at":"2024-07-25T12:20:52.000Z","size":27,"stargazers_count":40,"open_issues_count":3,"forks_count":13,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-03-31T11:04:26.112Z","etag":null,"topics":["csv","csv-export","csv-files","csv-import","injection-attacks","ruby","ruby-gem","security"],"latest_commit_sha":null,"homepage":"","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/zvory.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-07-27T23:02:25.000Z","updated_at":"2025-02-27T08:09:22.000Z","dependencies_parsed_at":"2023-12-07T21:29:41.670Z","dependency_job_id":"9b1fe5b7-7aec-4af5-a754-d278fdcfbd40","html_url":"https://github.com/zvory/csv-safe","commit_stats":{"total_commits":23,"total_committers":11,"mean_commits":2.090909090909091,"dds":0.782608695652174,"last_synced_commit":"70723ee09d14945fa91223065e5e77191373e316"},"previous_names":[],"tags_count":10,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zvory%2Fcsv-safe","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zvory%2Fcsv-safe/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zvory%2Fcsv-safe/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zvory%2Fcsv-safe/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/zvory","download_url":"https://codeload.github.com/zvory/csv-safe/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247657281,"owners_count":20974345,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["csv","csv-export","csv-files","csv-import","injection-attacks","ruby","ruby-gem","security"],"created_at":"2024-12-03T16:16:04.511Z","updated_at":"2025-04-07T13:06:49.064Z","avatar_url":"https://github.com/zvory.png","language":"Ruby","readme":"# csv-safe\n\n[![Gem Version](https://badge.fury.io/rb/csv-safe.svg)](https://badge.fury.io/rb/csv-safe)\n\nAlso hosted on [RubyGems.org](https://rubygems.org/gems/csv-safe).\n\nThis gem decorates the built in CSV library to prevent CSV injection attacks. Wherever you would use `CSV` in your code, use `CSVSafe`. The gem will encode your fields in UTF-8.\n\nWhat this gem does specifically:\n - Override `CSV#\u003c\u003c` to sanitize incoming rows.\n - Override `CSV#initialize` to add a converter that will sanitize fields being read.\n\nA description of CSV injection attacks on [OWASP](https://owasp.org/www-community/attacks/CSV_Injection) \n\nMade while working at [Influitive](https://influitive.com/). We kept writing similar code to sanitize CSV output, and I couldn't find a gem to do this for us, so I wrote this. \n\n\n## Installation\n\nAdd this line to your application's Gemfile:\n\n```ruby\ngem 'csv-safe'\n```\n\nAnd then execute:\n\n    $ bundle\n\nOr install it yourself as:\n\n    $ gem install csv-safe\n\n## Development\n\nAfter checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.\n\nTo install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `csv-safe.gemspec`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).\n\n## License\n\nThe gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzvory%2Fcsv-safe","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fzvory%2Fcsv-safe","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzvory%2Fcsv-safe/lists"}