[Pkg-javascript-commits] [backbone] 159/211: Issue #359 -- removing duplicate model.escape documentation.
Jonas Smedegaard
js at moszumanska.debian.org
Sat May 3 17:00:18 UTC 2014
This is an automated email from the git hooks/post-receive script.
js pushed a commit to tag 0.5.0
in repository backbone.
commit 78212c2b9160c0b01132ed40ed23f01d94fe1e42
Author: Jeremy Ashkenas <jashkenas at gmail.com>
Date: Thu May 26 14:05:27 2011 -0400
Issue #359 -- removing duplicate model.escape documentation.
---
index.html | 17 -----------------
1 file changed, 17 deletions(-)
diff --git a/index.html b/index.html
index c1d6243..cb73e20 100644
--- a/index.html
+++ b/index.html
@@ -581,23 +581,6 @@ new Book({
<tt>note.get("title")</tt>
</p>
- <p id="Model-escape">
- <b class="header">escape</b><code>model.escape(attribute)</code>
- <br />
- Similar to <a href="#Model-get">get</a>, but returns the HTML-escaped version
- of a model's attribute. If you're interpolating data from the model into
- HTML, using <b>escape</b> to retrieve attributes will prevent
- <a href="http://en.wikipedia.org/wiki/Cross-site_scripting">XSS</a> attacks.
- </p>
-
-<pre class="runnable">
-var hacker = new Backbone.Model({
- name: "<script>alert('xss')</script>"
-});
-
-alert(hacker.escape('name'));
-</pre>
-
<p id="Model-set">
<b class="header">set</b><code>model.set(attributes, [options])</code>
<br />
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-javascript/backbone.git
More information about the Pkg-javascript-commits
mailing list