The insecure examples code does not include delimiters for strings

$this->placeholderFormat('<@foo>text</@foo>, ['@foo' => $some_variable]); $this->placeholderFormat('<a @foo>link text</a>, ['@foo' => $some_variable]); $this->placeholderFormat('<a href="@foo">link text</a>, ['@foo' => $some_variable]); $this->placeholderFormat('<a title="@foo">link text</a>, ['@foo' => $some_variable]);

$this->placeholderFormat('<@foo>text</@foo>', ['@foo' => $some_variable]); $this->placeholderFormat('<a @foo>link text</a>', ['@foo' => $some_variable]); $this->placeholderFormat('<a href="@foo">link text</a>', ['@foo' => $some_variable]); $this->placeholderFormat('<a title="@foo">link text</a>', ['@foo' => $some_variable]);

Comments & Activities

Issue created by @apaderno
Comment about 1 month ago →
🇮🇹Italy apaderno Brescia, 🇮🇹
I would rather wait 📌 Correct the comment grammar Active is fixed, before creating a merge request for this issue.
Comment about 1 month ago →
🇮🇹Italy apaderno Brescia, 🇮🇹
@avpaderno opened merge request.
Comment 26 days ago →
🇮🇹Italy apaderno Brescia, 🇮🇹
Comment 26 days ago →
🇺🇸United States smustgrave
Can we use the full issue summary template please.
Comment 26 days ago →
🇮🇹Italy apaderno Brescia, 🇮🇹
Comment 23 days ago →
🇮🇹Italy apaderno Brescia, 🇮🇹
Comment 18 days ago →
🇺🇸United States smustgrave
Seems pretty straight forward, LGTM

Comment 3 days ago →

System Message

catch → committed d4c9cbd2 on 11.2.x

Issue #3521327 by avpaderno: The insecure examples code does not include...

Comment 3 days ago →

System Message

catch → committed b4332a51 on 11.x

Issue #3521327 by avpaderno: The insecure examples code does not include...

Comment 3 days ago →
🇬🇧United Kingdom catch
Committed/pushed to 11.x and cherry-picked to 11.2.x, thanks!
Comment 3 days ago →
System Message
catch → closed merge request !12047