gitlab-org--gitlab-foss/lib/banzai/filter/html_entity_filter.rb

# frozen_string_literal: true

require 'erb'

module Banzai
  module Filter
    # Text filter that escapes these HTML entities: & " < >
    class HtmlEntityFilter < HTML::Pipeline::TextFilter
      def call
        ERB::Util.html_escape(text)
      end
    end
  end
end
Enable frozen strings in lib/banzai/filter/.rb Excludes a few filters that require more work: lib/banzai/filter/image_lazy_load_filter_spec.rb * lib/banzai/filter/syntax_highlight_filter_spec.rb * lib/banzai/filter/table_of_contents_filter_spec.rb Part of #47424 2018-07-23 09:32:32 +00:00			`# frozen_string_literal: true`

Enable CacheMarkdownField for the remaining models This commit alters views for the following models to use the markdown cache if present: * AbuseReport * Appearance * ApplicationSetting * BroadcastMessage * Group * Issue * Label * MergeRequest * Milestone * Project At the same time, calls to `escape_once` have been moved into the `single_line` Banzai pipeline, so they can't be missed out by accident and the work is done at save, rather than render, time. 2016-10-06 22:01:42 +00:00			`require 'erb'`

			`module Banzai`
			`module Filter`
			`# Text filter that escapes these HTML entities: & " < >`
HTMLEntityFilter -> HtmlEntityFilter 2016-10-10 14:46:26 +00:00			`class HtmlEntityFilter < HTML::Pipeline::TextFilter`
Enable CacheMarkdownField for the remaining models This commit alters views for the following models to use the markdown cache if present: * AbuseReport * Appearance * ApplicationSetting * BroadcastMessage * Group * Issue * Label * MergeRequest * Milestone * Project At the same time, calls to `escape_once` have been moved into the `single_line` Banzai pipeline, so they can't be missed out by accident and the work is done at save, rather than render, time. 2016-10-06 22:01:42 +00:00			`def call`
Escape HTML entities in commit messages 2018-02-15 11:06:57 +00:00			`ERB::Util.html_escape(text)`
Enable CacheMarkdownField for the remaining models This commit alters views for the following models to use the markdown cache if present: * AbuseReport * Appearance * ApplicationSetting * BroadcastMessage * Group * Issue * Label * MergeRequest * Milestone * Project At the same time, calls to `escape_once` have been moved into the `single_line` Banzai pipeline, so they can't be missed out by accident and the work is done at save, rather than render, time. 2016-10-06 22:01:42 +00:00			`end`
			`end`
			`end`
			`end`