Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Unescaped attributes #664
This fixes an issue where, say:
would render things such that
This makes it so that
EDIT: I found out after looking closer that this was only affecting things inside
The current code passes the modified tests in the pull request without any changes.
The escaping really only applies to HTML tag escaping (it doesn't do ampersands). I'd disagree that attributes should always be ampersand escaped, I'd expect that your original content should be "x&y" in that case.