rb/spec/autolinking_spec.rb [498:505]:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
        end
      end

      context "with a @ in a URL" do
        context "with XSS attack" do
          def original_text; 'http://x.xx.com/@"style="color:pink"onmouseover=alert(1)//'; end

          it "should not allow XSS follwing @" do
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -



rb/spec/rewriter_spec.rb [519:526]:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
      end
    end

    context "with a @ in a URL" do
      context "with XSS attack" do
        def original_text; 'http://x.xx.com/@"style="color:pink"onmouseover=alert(1)//'; end

        it "should not allow XSS follwing @" do
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -