Permalink
Browse files

fixed XSS protection escaping issues in rails 3

  • Loading branch information...
dcolthorp committed Apr 30, 2010
1 parent d362fe5 commit cdf55ab6a8dc589ac382237204042de89ef8f649
Showing with 1 addition and 1 deletion.
  1. +1 −1 lib/bistro_car/helpers.rb
@@ -34,7 +34,7 @@ def render_cs_bundle_bundled(bundle)
end
def render_cs_bundle_inline(bundle)
- content_tag(:script, <<-JAVASCRIPT, :type => 'text/javascript', :charset => 'utf-8')
+ content_tag(:script, <<-JAVASCRIPT.html_safe, :type => 'text/javascript', :charset => 'utf-8')
//<![CDATA[
#{bundle.to_javascript}
//]]>

0 comments on commit cdf55ab

Please sign in to comment.