Home Explore Help
Sign In
compsci-industry
/
TechEmpower.FrameworkBenchmarks
mirror of https://github.com/TechEmpower/FrameworkBenchmarks.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

[ruby/roda-sequel] Use CGI.escape_html (#10097)

Roda will use the faster `CGI.escape_html` if the "cgi" gem is
installed:
https://github.com/jeremyevans/roda/blob/d89cd5d7310dad20eb706eb392ebbce49f815e67/lib/roda/plugins/h.rb

```ruby
require 'benchmark/ips'
require 'erb'

Benchmark.ips do |x|
  x.config(time: 5)

  messages = []
  messages <<  'Additional fortune added at request time.'
  messages << 'フレームワークのベンチマーク'
  messages << '<script>alert("This should not be displayed in a browser alert box.");</script>'

  require 'cgi'
  x.report("CGI") do
    messages.each do |m|
      CGI.escape_html(m)
    end
  end

  ESCAPE_HTML = {
    "&" => "&amp;".freeze,
    "<" => "&lt;".freeze,
    ">" => "&gt;".freeze,
    "'" => "&#39;".freeze,
    '"' => "&quot;".freeze,
  }.freeze

  # A Regexp of HTML entities to match for escaping.
  ESCAPE_HTML_PATTERN = Regexp.union(*ESCAPE_HTML.keys)

  x.report("ESCAPE_HTML") do
    messages.each do |m|
      m.to_s.gsub(ESCAPE_HTML_PATTERN){|c| ESCAPE_HTML[c] }
    end
  end

  x.compare!
end
```

```
ruby 3.4.5 (2025-07-16 revision 20cda200d3) +PRISM [arm64-darwin24]
Warming up --------------------------------------
                 CGI    39.444k i/100ms
         ESCAPE_HTML    33.482k i/100ms
Calculating -------------------------------------
                 CGI    394.120k (± 1.0%) i/s    (2.54 μs/i) -      1.972M in   5.004594s
         ESCAPE_HTML    333.558k (± 1.6%) i/s    (3.00 μs/i) -      1.674M in   5.020278s

Comparison:
                 CGI:   394120.5 i/s
         ESCAPE_HTML:   333557.6 i/s - 1.18x  slower
```
Petrik de Heus 1 day ago
parent
b42bd58bbf
commit
42c5d8989f
2 changed files with 3 additions and 0 deletions
Split View Show Diff Stats
  1. 1 0
      frameworks/Ruby/roda-sequel/Gemfile
  2. 2 0
      frameworks/Ruby/roda-sequel/Gemfile.lock

+ 1 - 0
frameworks/Ruby/roda-sequel/Gemfile
View File 

@@ -5,6 +5,7 @@ gem "json", "~> 2.8"
 
 gem "sequel", "~> 5.67"
 
 gem "roda", "~> 3.66"
 
 gem "tilt", "~> 2.1", require: "tilt/erb"
 
+gem "cgi" # Make sure the h plugin uses the faster CGI.escape_html
 
 
 group :mysql, optional: true do
 
   gem 'trilogy', '~> 2.9', platforms: [:ruby, :windows]

+ 2 - 0
frameworks/Ruby/roda-sequel/Gemfile.lock
View File 

@@ -2,6 +2,7 @@ GEM
 
   remote: https://rubygems.org/
 
   specs:
 
     bigdecimal (3.1.9)
 
+    cgi (0.5.0)
 
     erubi (1.13.1)
 
     iodine (0.7.58)
 
     json (2.13.2)
 
@@ -26,6 +27,7 @@ PLATFORMS
 
   x86_64-linux
 
 
 DEPENDENCIES
 
+  cgi
 
   erubi (~> 1.12)
 
   iodine (~> 0.7)
 
   json (~> 2.8)