Module: ActionView::Helpers::JavaScriptHelper

Defined in:: lib/legacy-rails-CVE-2020-5267-patch.rb

Instance Method Summary collapse

#escape_javascript(javascript) ⇒ Object (also: #j)
#old_ej ⇒ Object

Instance Method Details

#escape_javascript(javascript) ⇒ `Object` Also known as: j

# File 'lib/legacy-rails-CVE-2020-5267-patch.rb', line 15

def escape_javascript(javascript)
  javascript = javascript.to_s
  if javascript.empty?
    result = ""
  else
    result = javascript.gsub(/(\\|<\/|\r\n|\342\200\250|\342\200\251|[\n\r"']|[`]|[$])/u, JS_ESCAPE_MAP)
  end
  javascript.html_safe? ? result.html_safe : result
end

#old_ej ⇒ `Object`

12	# File 'lib/legacy-rails-CVE-2020-5267-patch.rb', line 12 alias :old_ej :escape_javascript

Module: ActionView::Helpers::JavaScriptHelper

Instance Method Summary collapse

Instance Method Details

#escape_javascript(javascript) ⇒ Object Also known as: j

#old_ej ⇒ Object

#escape_javascript(javascript) ⇒ `Object` Also known as: j

#old_ej ⇒ `Object`