From eba369822690e0740563e6deec6d258fca389f7b Mon Sep 17 00:00:00 2001 From: Justin Collins Date: Tue, 2 Aug 2022 22:12:27 -0700 Subject: [PATCH] Update documentation for Rack::Protection::EscapedParams Remove mention of `html_safe` --- rack-protection/lib/rack/protection/escaped_params.rb | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/rack-protection/lib/rack/protection/escaped_params.rb b/rack-protection/lib/rack/protection/escaped_params.rb index 17b35d5292..80f71d1b9c 100644 --- a/rack-protection/lib/rack/protection/escaped_params.rb +++ b/rack-protection/lib/rack/protection/escaped_params.rb @@ -17,8 +17,7 @@ module Protection # More infos:: http://en.wikipedia.org/wiki/Cross-site_scripting # # Automatically escapes Rack::Request#params so they can be embedded in HTML - # or JavaScript without any further issues. Calls +html_safe+ on the escaped - # strings if defined, to avoid double-escaping in Rails. + # or JavaScript without any further issues. # # Options: # escape:: What escaping modes to use, should be Symbol or Array of Symbols.