kotovalexarian-likes-github/rails--rails
1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
Code Releases Activity

Use lower case letters in unicodes sequences to match the new encoder's output

Browse source
This commit is contained in:
Godfrey Chan 2013-11-27 02:46:51 -08:00
parent 2f1c5789c1
commit c229c7a39c
2 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
actionview/test/template/erb_util_test.rb
View file

@ -31,9 +31,9 @@ class ErbUtilTest < ActiveSupport::TestCase
['1', '1'],
['null', 'null'],
['"&"', '"\u0026"'],
['"</script>"', '"\u003C/script\u003E"'],
['["</script>"]', '["\u003C/script\u003E"]'],
['{"name":"</script>"}', '{"name":"\u003C/script\u003E"}']
['"</script>"', '"\u003c/script\u003e"'],
['["</script>"]', '["\u003c/script\u003e"]'],
['{"name":"</script>"}', '{"name":"\u003c/script\u003e"}']
]
def test_html_escape

2
activesupport/lib/active_support/core_ext/string/output_safety.rb
View file

@ -4,7 +4,7 @@ require 'active_support/core_ext/kernel/singleton_class'
class ERB
module Util
HTML_ESCAPE = { '&' => '&amp;', '>' => '&gt;', '<' => '&lt;', '"' => '&quot;', "'" => '&#39;' }
JSON_ESCAPE = { '&' => '\u0026', '>' => '\u003E', '<' => '\u003C' }
JSON_ESCAPE = { '&' => '\u0026', '>' => '\u003e', '<' => '\u003c' }
HTML_ESCAPE_ONCE_REGEXP = /["><']|&(?!([a-zA-Z]+|(#\d+));)/
JSON_ESCAPE_REGEXP = /[&><]/