Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Review use of mark_safe when building HTML code in template tags #2574

Open
elichad opened this issue Nov 16, 2023 · 1 comment
Open

Review use of mark_safe when building HTML code in template tags #2574

elichad opened this issue Nov 16, 2023 · 1 comment
Assignees
@elichad
Labels
component: user interface (UI) type: research
Projects
Miscellaneous issue backlog

Comments

@elichad
Copy link
Contributor

elichad commented Nov 16, 2023 

          After reading https://docs.djangoproject.com/en/3.2/ref/utils/#django.utils.html.format_html I think we should review our use of `mark_safe`, as `format_html` may be more appropriate.

Originally posted by @pbanaszkiewicz in #2553 (comment)

In the wake of #2567 I agree that this is a good idea.
@elichad elichad mentioned this issue Nov 16, 2023
Merged
@elichad elichad added this to To do - Unprioritized in Miscellaneous issue backlog via automation Nov 16, 2023
@elichad elichad moved this from To do - Unprioritized to To do - High priority in Miscellaneous issue backlog Nov 21, 2023
@elichad
Copy link
Contributor Author

elichad commented Nov 21, 2023

High priority to investigate; can be re-assessed and re-prioritised once we know if/how much work there is to do & if there are any security problems that need to be addressed urgently.

@elichad elichad self-assigned this Nov 21, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@elichad elichad

Labels
component: user interface (UI) type: research
Projects
Miscellaneous issue backlog
To do - High priority
Milestone
No milestone
Development

No branches or pull requests
1 participant
@elichad