CGI.escapeHTML in gems

1. #activesupport-7.0.3/lib/active_support/core_ext/string/output_safety.rb
2. 45-      else
3. 46:        CGI.escapeHTML(ActiveSupport::Multibyte::Unicode.tidy_bytes(s))
4. 47-      end
5. --
6. 323-      def explicit_html_escape_interpolated_argument(arg)
7. 324:        (!html_safe? || arg.html_safe?) ? arg : CGI.escapeHTML(arg.to_s)
8. 325-      end
9. --
10. 345-          end
11. 346:          CGI.escapeHTML(arg_string)
12. 347-        end
13.  
14. #aliyun-sdk-0.8.0/lib/aliyun/oss/protocol.rb
15. 1056-        object_names.each { |k|
16. 1057:          body << '<Object><Key>' << CGI.escapeHTML(k) << '</Key></Object>'
17. 1058-        }
18.  
19. #awesome_print-1.9.2/lib/awesome_print/colorize.rb
20. 8-    def colorize(str, type)
21. 9:      str = CGI.escapeHTML(str) if options[:html]
22. 10-      if options[:plain] || !options[:color][type] || !inspector.colorize?
23.  
24. #better_errors-2.9.1/lib/better_errors/error_page.rb
25. 130-        "<span class='unsupported'>(Instance of ignored class. "\
26. 131:        "#{obj.class.name ? "Remove #{CGI.escapeHTML(obj.class.name)} from" : "Modify"}"\
27. 132-        " BetterErrors.ignored_classes if you need to see it.)</span>"
28. --
29. 137-      "<span class='unsupported'>(Object too large. "\
30. 138:        "#{obj.class.name ? "Modify #{CGI.escapeHTML(obj.class.name)}#inspect or a" : "A"}"\
31. 139-        "djust BetterErrors.maximum_variable_inspect_size if you need to see it.)</span>"
32. 140-    rescue Exception => e
33. 141:      "<span class='unsupported'>(exception #{CGI.escapeHTML(e.class.to_s)} was raised in inspect)</span>"
34. 142-    end
35.  
36. #better_errors-2.9.1/lib/better_errors/inspectable_value.rb
37. 21-    def value_as_html
38. 22:      @value_as_html ||= CGI.escapeHTML(value)
39. 23-    end
40.  
41. #brakeman-5.2.3/bundle/ruby/2.7.0/gems/haml-5.2.2/lib/haml/helpers.rb
42. 609-    def html_escape(text)
43. 610:      CGI.escapeHTML(text.to_s)
44. 611-    end
45.  
46. #brakeman-5.2.3/bundle/ruby/2.7.0/gems/temple-0.8.2/lib/temple/utils.rb
47. 31-      end
48. 32:    elsif defined?(CGI.escapeHTML)
49. 33-      # Returns an escaped copy of `html`.
50. --
51. 37-      def escape_html(html)
52. 38:        CGI.escapeHTML(html.to_s)
53. 39-      end
54.  
55. #brakeman-5.2.3/lib/brakeman/messages.rb
56. 112-  def to_html
57. 113:    "<span class=\"code\">#{CGI.escapeHTML(@code)}</span>"
58. 114-  end
59. --
60. 140-  def to_html
61. 141:    "<span class=\"filename\">#{CGI.escapeHTML(@file)}</span>"
62. 142-  end
63. --
64. 202-  def to_html
65. 203:    CGI.escapeHTML(@value)
66. 204-  end
67. --
68. 217-  def to_html
69. 218:    CGI.escapeHTML(self.to_s)
70. 219-  end
71.  
72. #brakeman-5.2.3/lib/brakeman/report/report_html.rb
73. 51-      template.each_output do |out|
74. 52:        out = CGI.escapeHTML(out_processor.format(out))
75. 53-        template_rows[name] ||= []
76. --
77. 89-    warning['File'] = original.file.relative
78. 90:    warning['Note'] = CGI.escapeHTML(@ignore_filter.note_for(original) || "")
79. 91-    warning
80. --
81. 125-    "<table id='#{code_id}' class='context' style='display:none'>" <<
82. 126:    "<caption>#{CGI.escapeHTML warning_file(warning) || ''}</caption>"
83. 127-
84. --
85. 152-          <td class='context'>
86. 153:            <pre class='context'>#{CGI.escapeHTML context.first[1].chomp}</pre>
87. 154-          </td>
88. --
89. 174-            <td class='context'>
90. 175:              <pre class='context'>#{CGI.escapeHTML code[1].chomp}</pre>
91. 176-            </td>
92. --
93. 202-
94. 203:      code = "<span class=\"code\">#{CGI.escapeHTML(code).gsub("[BMP_UI]", "<span class=\"user_input\">").gsub("[/BMP_UI]", "</span>")}</span>"
95. 204-      full_message = "#{message}: #{code}"
96.  
97. #brakeman-5.2.3/lib/brakeman/report/templates/error_overview.html.erb
98. 13-          <tr>
99. 14:            <td><%= CGI.escapeHTML warning[:error] %></td>
100. 15-            <td>
101.  
102. #diff-lcs-1.5.0/lib/diff/lcs/htmldiff.rb
103. 122-
104. 123:    @left.map! do |line| CGI.escapeHTML(line.chomp) end
105. 124:    @right.map! do |line| CGI.escapeHTML(line.chomp) end
106. 125-
107.  
108. #erubi-1.10.0/lib/erubi.rb
109. 29-    def self.h(value)
110. 30:      CGI.escapeHTML(value.to_s)
111. 31-    end
112.  
113. #erubis-2.7.0/benchmark/bench.rb
114. 277-      tuples = [
115. 278:        [ 'bench_eruby.rhtml',  '<%= CGI.escapeHTML((\1).to_s) %>' ],
116. 279-        [ 'bench_erb.rhtml',    '<%=h \1 %>' ],
117.  
118. #fog-aws-3.14.0/lib/fog/aws/requests/storage/delete_multiple_objects.rb
119. 43-                data << "<Object>"
120. 44:                data << "<Key>#{CGI.escapeHTML(object_name)}</Key>"
121. 45:                data << "<VersionId>#{CGI.escapeHTML(version_id)}</VersionId>"
122. 46-                data << "</Object>"
123. --
124. 49-              data << "<Object>"
125. 50:              data << "<Key>#{CGI.escapeHTML(object_name)}</Key>"
126. 51-              data << "</Object>"
127.  
128. #fog-internet-archive-0.0.2/lib/fog/storage/internet_archive/requests/delete_multiple_objects.rb
129. 37-            data << "<Object>"
130. 38:            data << "<Key>#{CGI.escapeHTML(object_name)}</Key>"
131. 39-            data << "</Object>"
132.  
133. #gyoku-1.4.0/lib/gyoku/xml_value.rb
134. 25-        elsif String === object
135. 26:          escape_xml ? CGI.escapeHTML(object) : object
136. 27-        elsif object.respond_to?(:to_datetime)
137.  
138. #haml-5.2.2/lib/haml/helpers.rb
139. 609-    def html_escape(text)
140. 610:      CGI.escapeHTML(text.to_s)
141. 611-    end
142.  
143. #liquid-5.3.0/lib/liquid/standardfilters.rb
144. 45-    def escape(input)
145. 46:      CGI.escapeHTML(input.to_s) unless input.nil?
146. 47-    end
147.  
148. #plist-3.6.0/lib/plist/generator.rb
149. 86-                element.sort_by{|k,v| k.to_s }.collect do |k,v|
150. 87:                  tag('key', CGI.escapeHTML(k.to_s), level + 1) +
151. 88-                  build(v, level + 1)
152. --
153. 98-          when String, Symbol, Integer, Float
154. 99:            tag(element_type(element), CGI.escapeHTML(element.to_s), level)
155. 100-          when IO, StringIO
156.  
157. #rails-html-sanitizer-1.4.3/test/sanitizer_test.rb
158. 386-  def test_should_sanitize_attributes
159. 387:    assert_sanitized %(<SPAN title="'><script>alert()</script>">blah</SPAN>), %(<span title="#{CGI.escapeHTML "'><script>alert()</script>"}">blah</span>)
160. 388-  end
161.  
162. #railties-7.0.3/lib/rails/info.rb
163. 45-          properties.each do |(name, value)|
164. 46:            table << %(<tr><td class="name">#{CGI.escapeHTML(name.to_s)}</td>)
165. 47-            formatted_value = if value.kind_of?(Array)
166. 48:              "<ul>" + value.map { |v| "<li>#{CGI.escapeHTML(v.to_s)}</li>" }.join + "</ul>"
167. 49-            else
168. 50:              CGI.escapeHTML(value.to_s)
169. 51-            end
170.  
171. #rss-0.2.9/test/test_content.rb
172. 19-      @content_nodes = @elems.collect do |name, value|
173. 20:        "<#{@prefix}:#{name}>#{CGI.escapeHTML(value.to_s)}</#{@prefix}:#{name}>"
174. 21-      end.join("\n")
175.  
176. #rss-0.2.9/test/test_syndication.rb
177. 30-      @sy_nodes = @elems.collect do |name, value|
178. 31:        "<#{@prefix}:#{name}>#{CGI.escapeHTML(value.to_s)}</#{@prefix}:#{name}>"
179. 32-      end.join("\n")
180. --
181. 53-#{make_channel(("<" + @prefix + ":" + tag.to_s + ">" +
182. 54:  CGI.escapeHTML(value.to_s) +
183. 55-  "</" + @prefix + ":" + tag.to_s + ">") * 2)}
184.  
185. #rss-0.2.9/test/test_taxonomy.rb
186. 34-      @topics_lis.each do |value|
187. 35:        resource = CGI.escapeHTML(value)
188. 36-        @topics_node << "    <rdf:li resource=\"#{resource}\"/>\n"
189. --
190. 72-            value.each do |li|
191. 73:              resource = CGI.escapeHTML(li)
192. 74-              rv << "      <rdf:li resource=\"#{resource}\"/>\n"
193.  
194. #rss-0.2.9/test/test_trackback.rb
195. 25-      @content_nodes = @elems.collect do |name, value|
196. 26:        "<#{@prefix}:#{name} rdf:resource=\"#{CGI.escapeHTML(value.to_s)}\"/>"
197. 27-      end.join("\n")
198. --
199. 29-      @content_nodes2 = @elems.collect do |name, value|
200. 30:        "<#{@prefix}:#{name}>#{CGI.escapeHTML(value.to_s)}</#{@prefix}:#{name}>"
201. 31-      end.join("\n")
202. --
203. 61-#{make_item(("<" + @prefix + ":" + tag.to_s + " rdf:resource=\"" +
204. 62:  CGI.escapeHTML(value.to_s) +
205. 63-  "\"/>") * 2)}
206. --
207. 72-#{make_item(("<" + @prefix + ":" + tag.to_s + " rdf:resource=\"" +
208. 73:  CGI.escapeHTML(value.to_s) +
209. 74-  "\"/>") * 2)}
210. --
211. 113-      @elems.each do |name, value|
212. 114:        excepted = %Q!<#{@prefix}:#{name} rdf:resource="#{CGI.escapeHTML(value)}"/>!
213. 115-        @parents.each do |parent|
214.  
215. #rubocop-1.31.1/lib/rubocop/formatter/html_formatter.rb
216. 121-        def escape(string)
217. 122:          CGI.escapeHTML(string)
218. 123-        end
219.  
220. #rubygems-update-3.3.17/bundler/lib/bundler/vendor/thor/lib/thor/util.rb
221. 279-      def escape_html(string)
222. 280:        CGI.escapeHTML(string)
223. 281-      end
224.  
225. #simplecov-html-0.12.3/views/source_file.erb
226. 47-
227. 48:            <code class="ruby"><%= CGI.escapeHTML(line.src.chomp) %></code>
228. 49-          </li>
229.  
230. #temple-0.8.2/lib/temple/utils.rb
231. 31-      end
232. 32:    elsif defined?(CGI.escapeHTML)
233. 33-      # Returns an escaped copy of `html`.
234. --
235. 37-      def escape_html(html)
236. 38:        CGI.escapeHTML(html.to_s)
237. 39-      end
238.  
239. #thor-1.2.1/lib/thor/util.rb
240. 279-      def escape_html(string)
241. 280:        CGI.escapeHTML(string)
242. 281-      end
243.  
244. #yard-0.9.28/lib/yard/templates/helpers/html_helper.rb
245. 23-      def h(text)
246. 24:        CGI.escapeHTML(text.to_s)
247. 25-      end
248.