6b1864fbcd
Using the `_html` suffix in an i18n key is the same as using `html_safe` on it, which means that translation could potentially be used for XSS attacks.
24 lines
1.2 KiB
Plaintext
24 lines
1.2 KiB
Plaintext
<td style="padding-bottom: 20px; padding-left: 10px;">
|
|
|
|
<h1 style="font-family: 'Open Sans','Helvetica Neue',arial,sans-serif;">
|
|
<%= t("mailers.evaluation_comment.title", investment: @email.commentable.title) %>
|
|
</h1>
|
|
|
|
<p style="font-family: 'Open Sans','Helvetica Neue',arial,sans-serif;font-size: 14px;font-weight: normal;line-height: 24px;">
|
|
<%= t("mailers.evaluation_comment.hi") %> <strong><%= @email_to.name %></strong>,
|
|
</p>
|
|
|
|
<p style="font-family: 'Open Sans','Helvetica Neue',arial,sans-serif;font-size: 14px;font-weight: normal;line-height: 24px;">
|
|
<%= sanitize(t(
|
|
"mailers.evaluation_comment.new_comment_by",
|
|
commenter: @email.comment.author.name,
|
|
investment: valuation_comments_link(@email.commentable)
|
|
)) %>
|
|
</p>
|
|
|
|
<%= t("mailers.evaluation_comment.commenter_info", commenter: @email.comment.author.name, time: l(@email.comment.created_at)) %>
|
|
<div style="border-left: 2px solid #DEE0E3;font-family: 'Open Sans','Helvetica Neue',arial,sans-serif;font-size: 14px;font-style: italic;font-weight: normal;line-height: 24px;margin-left: 20px;padding: 10px;">
|
|
<%= simple_format sanitize_and_auto_link(@email.comment.body), {}, sanitize: false %>
|
|
</div>
|
|
</td>
|