From 59779ffc00461c608fa95b43930db89f4fa1e00b Mon Sep 17 00:00:00 2001 From: Chris Howie Date: Thu, 18 Jul 2013 16:43:49 +0000 Subject: Gum: HTML-escape tag names when rendering them --- gum/templates/index.html | 2 +- gum/templates/sidebar.html | 2 +- gum/templates/tag.html | 2 +- gum/templates/tags.html | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) (limited to 'gum') diff --git a/gum/templates/index.html b/gum/templates/index.html index 83abf70..aae5ea5 100644 --- a/gum/templates/index.html +++ b/gum/templates/index.html @@ -28,7 +28,7 @@ {% if article.tags %} Tagged as : {% for tag in article.tags %} - {{ tag }} + {{ tag|e }} {% endfor %} {% endif %} diff --git a/gum/templates/sidebar.html b/gum/templates/sidebar.html index b0cd52b..442549e 100644 --- a/gum/templates/sidebar.html +++ b/gum/templates/sidebar.html @@ -33,7 +33,7 @@ {% if tags %} {% endif %} diff --git a/gum/templates/tag.html b/gum/templates/tag.html index 68cdcba..dc697fe 100644 --- a/gum/templates/tag.html +++ b/gum/templates/tag.html @@ -1,2 +1,2 @@ {% extends "index.html" %} -{% block title %}{{ SITENAME }} - {{ tag }}{% endblock %} +{% block title %}{{ SITENAME }} - {{ tag|e }}{% endblock %} diff --git a/gum/templates/tags.html b/gum/templates/tags.html index 862eff6..ec380b7 100644 --- a/gum/templates/tags.html +++ b/gum/templates/tags.html @@ -5,7 +5,7 @@ {% for tag in tag_cloud %}
  • - {{ tag.0 }} + {{ tag.0|e }}
    • {% endfor %} -- cgit v1.1