path: root/git-archimport.perl
diff options
authorJakub Narebski <>2007-03-07 01:21:25 (GMT)
committerJunio C Hamano <>2007-03-07 03:04:07 (GMT)
commitedc04e90f5a79b7805f1188ca94f06ef7eed81f5 (patch)
tree144fc67e98628e97eb2adad5436ddf0ea4329af3 /git-archimport.perl
parentc390ae97beb9e8cdab159b593ea9659e8096c4db (diff)
gitweb: Don't escape attributes in HTML methods
There is no need to escape HTML tag's attributes in HTML methods (like CGI::a()), because does attribute escaping automatically. $cgi->a({ ... -attribute => atribute_value }, tag_contents) is translated to <a ... attribute="attribute_value">tag_contents</a> The rules for escaping attribute values (which are string contents) are different. For example you have to take care about escaping embedded '"' and "'" characters; CGI::a() does that for us automatically. CGI::a() does not HTML escape tag_contents; we would need to write <a href="URL">some <b>bold</b> text</a> for example. So we use esc_html (or esc_path) to escape tag_contents as needed. Signed-off-by: Jakub Narebski <> Signed-off-by: Junio C Hamano <>
Diffstat (limited to 'git-archimport.perl')
0 files changed, 0 insertions, 0 deletions