Georg/OOMAnalyser
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Escape special characters in notification box

Browse Source
This commit is contained in:
Carsten Grohmann 2021-09-14 20:23:56 +02:00
parent 6528b96adb
commit cce4d65c4f
1 changed files with 16 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
OOMAnalyser.py
View File

@ -78,6 +78,20 @@ def toggle(element_id):
element.classList.toggle('js-text--display-none') element.classList.toggle('js-text--display-none')
def escape_html(unsafe):
"""
Escape unsafe HTML entities
@type unsafe: str
@rtype: str
"""
return unsafe.replace('&', "&")\
.replace('<', "&lt;")\
.replace('>', "&gt;")\
.replace('"', "&quot;")\
.replace("'", "&#039;")
def error(msg): def error(msg):
"""Show the error box and add the error message""" """Show the error box and add the error message"""
show_notifybox('ERROR', msg) show_notifybox('ERROR', msg)
@ -94,7 +108,7 @@ def warning(msg):
def show_notifybox(prefix, msg): def show_notifybox(prefix, msg):
"""Show the error box and the message""" """Show escaped message in the notification box"""
if prefix == 'WARNING': if prefix == 'WARNING':
css_class = 'js-notify_box__msg--warning' css_class = 'js-notify_box__msg--warning'
else: else:
@ -103,7 +117,7 @@ def show_notifybox(prefix, msg):
notify_box = document.getElementById('notify_box') notify_box = document.getElementById('notify_box')
notification = document.createElement('div') notification = document.createElement('div')
notification.classList.add(css_class) notification.classList.add(css_class)
notification.innerHTML = '{}: {}<br>'.format(prefix, msg) notification.innerHTML = '{}: {}<br>'.format(prefix, escape_html(msg))
notify_box.appendChild(notification) notify_box.appendChild(notification)