Closed schmengler closed 6 years ago
I also added getJsLayout()
because it returns JSON which does not need additional escaping in JS context, where it is used.
For a future PR, it would be nice to allow all methods that contain "Js" or "Json", just like all methods containing "Html" are allowed.
Thank you @schmengler!
escapeHtmlAttr
is already allowed because it contains "Html"