[Checkins]
SVN: zope.app.renderer/trunk/src/zope/app/renderer/plaintext.py
Bugfix for https://bugs.launchpad.net/zope3/+bug/98460:
PlainTextToHTMLRenderer
Marius Gedminas
marius at pov.lt
Wed Sep 26 20:02:00 EDT 2007
Log message for revision 80175:
Bugfix for https://bugs.launchpad.net/zope3/+bug/98460: PlainTextToHTMLRenderer
didn't escape HTML in source text.
Changed:
U zope.app.renderer/trunk/src/zope/app/renderer/plaintext.py
-=-
Modified: zope.app.renderer/trunk/src/zope/app/renderer/plaintext.py
===================================================================
--- zope.app.renderer/trunk/src/zope/app/renderer/plaintext.py 2007-09-26 23:58:21 UTC (rev 80174)
+++ zope.app.renderer/trunk/src/zope/app/renderer/plaintext.py 2007-09-27 00:02:00 UTC (rev 80175)
@@ -17,6 +17,8 @@
"""
__docformat__ = 'restructuredtext'
+import cgi
+
from zope.interface import implements
from zope.publisher.browser import BrowserView
@@ -39,14 +41,14 @@
Example::
>>> from zope.publisher.browser import TestRequest
- >>> source = PlainTextSourceFactory(u'This is source.\n')
+ >>> source = PlainTextSourceFactory(u'I hear that 1 > 2.\n')
>>> renderer = PlainTextToHTMLRenderer(source, TestRequest())
>>> renderer.render()
- u'This is source.<br />\n'
+ u'I hear that 1 > 2.<br />\n'
"""
implements(IHTMLRenderer)
__used_for__ = IPlainTextSource
def render(self):
"See zope.app.interfaces.renderer.IHTMLRenderer"
- return self.context.replace('\n', '<br />\n')
+ return cgi.escape(self.context).replace('\n', '<br />\n')
More information about the Checkins
mailing list