fix: commit messages being double-escaped in activies tab
This commit is contained in:
parent
c9d7ba4d69
commit
9c8c5e9dc0
3 changed files with 7 additions and 1 deletions
|
@ -119,6 +119,7 @@ Please view this file on the master branch, on stable branches it's out of date.
|
|||
- Cleanup Ci::ApplicationController. !6757 (Takuya Noguchi)
|
||||
- Fixes padding in all clipboard icons that have .btn class
|
||||
- Fix a typo in doc/api/labels.md
|
||||
- Fix double-escaping in activities tab (Alexandre Maia)
|
||||
- API: all unknown routing will be handled with 404 Not Found
|
||||
- Add docs for request profiling
|
||||
- Make guests unable to view MRs on private projects
|
||||
|
|
|
@ -5,7 +5,7 @@ module Banzai
|
|||
# Text filter that escapes these HTML entities: & " < >
|
||||
class HtmlEntityFilter < HTML::Pipeline::TextFilter
|
||||
def call
|
||||
ERB::Util.html_escape(text)
|
||||
ERB::Util.html_escape_once(text)
|
||||
end
|
||||
end
|
||||
end
|
||||
|
|
|
@ -11,4 +11,9 @@ describe Banzai::Filter::HtmlEntityFilter, lib: true do
|
|||
|
||||
expect(output).to eq(escaped)
|
||||
end
|
||||
|
||||
it 'does not double-escape' do
|
||||
escaped = ERB::Util.html_escape("Merge branch 'blabla' into 'master'")
|
||||
expect(filter(escaped)).to eq(escaped)
|
||||
end
|
||||
end
|
||||
|
|
Loading…
Reference in a new issue