Module: OutputBufferWithEscapedAngularXSS

Defined in:

lib/angular_xss/output_buffer.rb

Overview

ActionView < 7.1 used our patched ERB::Util.h to escape, 7.1 switched to CGI.escapeHTML

Instance Method Summary

• #<<(value) ⇒ Object
• #append=(value) ⇒ Object
• #concat(value) ⇒ Object

Instance Method Details

#<<(value) ⇒ Object

# File 'lib/angular_xss/output_buffer.rb', line 11

def <<(value)
  super(AngularXss::Escaper.escape_if_unsafe(value))
end

#append=(value) ⇒ Object

# File 'lib/angular_xss/output_buffer.rb', line 19

def append=(value)
  super(AngularXss::Escaper.escape_if_unsafe(value))
end

#concat(value) ⇒ Object

# File 'lib/angular_xss/output_buffer.rb', line 15

def concat(value)
  super(AngularXss::Escaper.escape_if_unsafe(value))
end