kotovalexarian-likes-github
/
heartcombo--simple_form
mirror of https://github.com/heartcombo/simple_form.git
1
0
Fork 0
Code Releases Activity
heartcombo--simple_form/lib/simple_form/components
History
Rafael Mendonça França 7d0ba39309 Always escape error messages 
Before, if your error message contained HTML tags, they were marked as
safe. Some error messages may contain user input so this would
lead a XSS vulnerability.

Error messages are now always escaped. If users need to mark them
as safe they will need to use the explicit `:error` option:

    f.input :name, error: raw('My <b>error</b>')
 		2014-11-25 18:02:01 -02:00
..
errors.rb Always escape error messages 2014-11-25 18:02:01 -02:00
hints.rb Change the translation mechanism to use 2014-04-04 14:51:21 -03:00
html5.rb Pass the options hash instead of the Leaf object 2014-03-11 19:41:25 -03:00
label_input.rb Pass the options hash instead of the Leaf object 2014-03-11 19:41:25 -03:00
labels.rb simply add wrapper_options argument to label_text to avoid warning 2014-06-20 10:21:06 +08:00
maxlength.rb Pass the options hash instead of the Leaf object 2014-03-11 19:41:25 -03:00
min_max.rb Pass the options hash instead of the Leaf object 2014-03-11 19:41:25 -03:00
pattern.rb Forgot to send some files 💣 2014-03-11 19:53:29 -03:00
placeholders.rb Change the translation mechanism to use 2014-04-04 14:51:21 -03:00
readonly.rb Forgot to send some files 💣 2014-03-11 19:53:29 -03:00