From 38d80f0af731326fcd5ae16c0129a056eff2fe32 Mon Sep 17 00:00:00 2001 From: erdgeist Date: Wed, 5 Feb 2025 23:05:01 +0100 Subject: Add warner if theres unescaped entities inside the Title fields --- app/views/nodes/edit.html.erb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/app/views/nodes/edit.html.erb b/app/views/nodes/edit.html.erb index b9260d2..ee11047 100644 --- a/app/views/nodes/edit.html.erb +++ b/app/views/nodes/edit.html.erb @@ -90,7 +90,7 @@ Title - <%= d.text_field :title %> + <%= d.text_field :title, :pattern => "(?:[^<>&]|&amp;|&lt;|&gt;)*", :title => "Warning: Unescaped HTML entities detected! Use &lt;, &gt;, &amp; instead of <, >, &." %> Abstract -- cgit v1.3