Document or expose additional information for escaped HTML strings #272

KevinGrandon · 2018-08-26T03:40:26Z

Right now when a developer performs console.log() on a string escaped by the html method in fusion-core, it's logged as an empty object. This makes it pretty confusing, so it would be nice if

At a minimum we should have some more comments in sanitization.js. It would be nice if we could expose some additional information as enumerable keys, possibly nesting the object? Quick sketch:

    const obj = {
         description: "An escaped HTML value. Use consumeSanitizedHTML to output."
    };
    Object.defineProperty(obj, key, {
      enumerable: false,
      configurable: false,
      value: head + values.map((s, i) => escape(s) + rest[i]).join(''),
    });
return obj;

fusion-core/src/sanitization.js

Lines 36 to 42 in a6145ba

    
           const obj = {}; 
        
           Object.defineProperty(obj, key, { 
        
             enumerable: false, 
        
             configurable: false, 
        
             value: head + values.map((s, i) => escape(s) + rest[i]).join(''), 
        
           }); 
        
           return obj;

The text was updated successfully, but these errors were encountered:

chrisdothtml mentioned this issue May 16, 2019

[fusion-core#272] Document or expose additional information for escaped HTML strings fusionjs/fusionjs#306

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Document or expose additional information for escaped HTML strings #272

Document or expose additional information for escaped HTML strings #272

KevinGrandon commented Aug 26, 2018

Document or expose additional information for escaped HTML strings #272

Document or expose additional information for escaped HTML strings #272

Comments

KevinGrandon commented Aug 26, 2018