Add HTMLHint as html linter, to avoid unquoted attributes in Django templates

betagouv / e-controle

Outil permettant de simplifier la relation entre un organisme de contrôle et des structures contrôlés

MIT License

9 stars 11 forks source link

Closed estellecomment closed 4 years ago

estellecomment commented 4 years ago

Unquoted attributes in Django templates are an XSS vulnerability. Add linter to dev environment that signals when attributes are not quoted.

To install :

npm install (the package htmlhint was added)
install linter in VSCode (if you use VSCode) : https://marketplace.visualstudio.com/items?itemName=mkaufman.HTMLHint