nairobi/_gap.html.erb at 61bf9a5c7307f9ffbed4519dee15d0bb90ccfea7 - nairobi - Repositorio oficial de Enreda Coop.

consul/nairobi

Files

Javi Martín 61bf9a5c73 Use sanitize instead of html_safe

The difference is `html_safe` allows every HTML tag, including the
`<script>` tag, while `sanitize` only allows tags which are considered
safe. In this case, we want to allow a `<span>` tag in a translation,
and links inside flash messages.

2019-10-08 18:46:21 +02:00

4 lines

97 B

Plaintext

Raw Blame History

	`<li class="ellipsis" aria-hidden="true">`
	`<%= sanitize(t("views.pagination.truncate")) %>`
	`</li>`