-
The Owasp [XSS cheatsheet](https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet) talks about escaping html, attributes, css, javascript, and URLs. It seems like Hiccup…
-
How do I get RSS feeds from MangaPark?
https://mangapark.net/title/10953-en-one-piece
-
### Describe the bug
When changing the provider. The date changes to a format that cannot be submitted.
Before
![image](https://github.com/user-attachments/assets/5c88a1d7-1cc9-4995-ab84-cad6ed…
-
It' be nice to be able to pass an escaping function to accommodate instantiating templates for non-html languages. Pystache supports this via an `escape` parameter. As a use case, I use mustache templ…
-
See `Yoast_Form::light_switch()` and `Yoast_Form::toggle_switch()` that generate the "switch toggle" controls.
Most of the output is escaped (HTML attributes, screen reader text) but the visible "l…
-
### Describe the bug
While trying to open another Fancybox, based on div from html loaded through ajax fancybox, for some reason "inline" type is ignored, and new instance is created as clone. Note t…
-
I would be nice to provide an option to escape the result of a function inside a block. Example
```js
Mustache.render("{{#someFunction}}someValue{{/someFunction}}", {
someFunction : function () {…
-
Thanks for maintaining this library @magiclen!
I found an issue with the [script escaping code](https://github.com/magiclen/html-escape/blob/8b7dd60fb37c9246ace45b58a373cc13eb4fc28d/src/encode/elem…
-
### Description
When exporting an insert statement, if the cell data contains a single quote, sql automatically adds a single quote to the single quote
### DBeaver Version
24.1.0.202406091028
### …
-
I have the following template:
```
.component.video-player
:if !useHtml5Player
.play-button{ dojoAttachPoint : 'playButton' }
%img.poster{ src : poster, dojoAttachPoint : "videoPlaceholder"…