Changeset 7674
- Timestamp:
- 06/17/08 06:19:08 (4 months ago)
- Files:
-
- django/trunk/docs/templates.txt (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
django/trunk/docs/templates.txt
r7649 r7674 347 347 * One, you can make sure to run each untrusted variable through the 348 348 ``escape`` filter (documented below), which converts potentially harmful 349 HTML characters to unharmful ones. This was defaultthe default solution349 HTML characters to unharmful ones. This was the default solution 350 350 in Django for its first few years, but the problem is that it puts the 351 351 onus on *you*, the developer / template author, to ensure you're escaping
