You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Cells per default does not escape HTML. However, you may run into problems when using Rails helpers. Internally, those helpers often blindly escape. This is not Cells’ fault but a design flaw in Rails.
I know this is not a bug, but want to provide a option to do html escaping by default.
Because set html escape for every input data is difficult and will cause security problem if forget.
The text was updated successfully, but these errors were encountered:
http://trailblazer.to/gems/cells/cells4.html
I know this is not a bug, but want to provide a option to do html escaping by default.
Because set html escape for every input data is difficult and will cause security problem if forget.
The text was updated successfully, but these errors were encountered: