1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-11-11 17:32:41 +01:00
phorge-phorge/src/infrastructure/celerity
Jakub Vrana e8dd67b88c Properly escape inline <script>
Test Plan:
Loaded Phabricator page, checked the source code. Also:

    $c_uri = '//connect.facebook.net/en_US/all.js#xfbml=1&appId=';
    echo CelerityStaticResourceResponse::renderInlineScript(
      jsprintf(
        'console.log(%s); // </script>
        %s',
        $c_uri,
        "</script><b>x</b>"));

Reviewers: epriestley, btrahan

Reviewed By: epriestley

CC: aran, Korvin

Differential Revision: https://secure.phabricator.com/D5741
2013-04-20 17:55:47 -07:00
..
__tests__ Make drydock case sensitive in attribute parsing 2012-11-29 06:05:35 -08:00
api.php Delete license headers from files 2012-11-05 11:16:51 -08:00
CelerityAPI.php Delete license headers from files 2012-11-05 11:16:51 -08:00
CelerityPhabricatorResourceController.php Refactor developer options to specific developer-mode option. 2013-02-01 10:12:17 -08:00
CelerityResourceController.php Consolidate HTTP header access 2013-02-09 15:01:57 -08:00
CelerityResourceGraph.php Delete license headers from files 2012-11-05 11:16:51 -08:00
CelerityResourceMap.php Delete license headers from files 2012-11-05 11:16:51 -08:00
CelerityResourceTransformer.php Fix dynamic string usage as safe input 2013-02-02 16:20:29 -08:00
CeleritySpriteGenerator.php Implement order and chaos modes for Remarkup editing 2013-04-19 19:50:21 -07:00
CelerityStaticResourceResponse.php Properly escape inline <script> 2013-04-20 17:55:47 -07:00
map.php Delete license headers from files 2012-11-05 11:16:51 -08:00