Use raw instead of html_safe

They do the exact same thing; however `html_safe` might confuse developers into thinking it will make the HTML safe. Using `raw` makes it clear that we're inserting the text without escaping it.
2019-10-06 16:22:01 +02:00
parent 9eee79f218
commit 89402bdbf6
7 changed files with 12 additions and 12 deletions
--- a/app/views/layouts/devise.html.erb
+++ b/app/views/layouts/devise.html.erb
@@ -3,11 +3,11 @@
  <head>
    <%= render "layouts/common_head", default_title: "Gobierno abierto" %>
    <%= render "layouts/meta_tags" %>
-    <%= setting["html.per_page_code_head"].try(:html_safe) %>
+    <%= raw setting["html.per_page_code_head"] %>
  </head>

  <body class="auth-page">
-    <%= setting["html.per_page_code_body"].try(:html_safe) %>
+    <%= raw setting["html.per_page_code_body"] %>
    <div class="wrapper">
      <div class="auth-image small-12 medium-3 column">
        <h1 class="logo margin">