consul/grecia
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Sanitize label texts automatically

Browse Source 
This way we can remove all those `html_safe` calls and we avoid
potential XSS attacks in label texts.
This commit is contained in:
Javi Martín
2019-10-05 16:42:43 +02:00
parent 2586229e38
commit 75a28fafcb
9 changed files with 27 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
app/views/organizations/registrations/new.html.erb
View File

@@ -34,7 +34,7 @@
"/conditions",
title: t("shared.target_blank"),
target: "_blank")
).html_safe %>
) %>
<div class="small-12 medium-6 small-centered">
<%= f.submit t("devise_views.organizations.registrations.new.submit"), class: "button expanded" %>