We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
ladybird
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

LibMarkdown: Escape HTML entities in text

Linus Groh 5 years ago
parent
fc3d16d664
commit
0a1ecbec48
2 changed files with 1 additions and 2 deletions
Unified View Show Diff Stats
  1. 0 1
      Libraries/LibMarkdown/CodeBlock.cpp
  2. 1 1
      Libraries/LibMarkdown/Text.cpp

+ 0 - 1
Libraries/LibMarkdown/CodeBlock.cpp
View File 

@@ -60,7 +60,6 @@ String CodeBlock::render_to_html() const
 
     else
 
     else
 
         builder.appendf("<code style=\"white-space: pre;\" class=\"%s\">", style_language.characters());
 
         builder.appendf("<code style=\"white-space: pre;\" class=\"%s\">", style_language.characters());
 
 
 
-    // TODO: This should also be done in other places.
 
     builder.append(escape_html_entities(m_code));
 
     builder.append(escape_html_entities(m_code));
 
 
 
     builder.append("</code>");
 
     builder.append("</code>");

+ 1 - 1
Libraries/LibMarkdown/Text.cpp
View File 

@@ -113,7 +113,7 @@ String Text::render_to_html() const
 
         }
 
         }
 
 
 
         current_style = span.style;
 
         current_style = span.style;
 
-        builder.append(span.text);
 
+        builder.append(escape_html_entities(span.text));
 
     }
 
     }
 
 
 
     for (ssize_t i = open_tags.size() - 1; i >= 0; --i) {
 
     for (ssize_t i = open_tags.size() - 1; i >= 0; --i) {

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5