Merge pull request rails#51186 from Earlopain/encourage-html-safe-methods-for-safe-join

vipulnsward · web-flow · commit e34a0eec3876 · 2024-02-25T11:58:07.000-05:00
Docs: Encourage html safe methods for safe join [ci skip]
diff --git a/actionview/lib/action_view/helpers/output_safety_helper.rb b/actionview/lib/action_view/helpers/output_safety_helper.rb
@@ -24,11 +24,11 @@ def raw(stringish)
       # the supplied separator, are HTML escaped unless they are HTML
       # safe, and the returned string is marked as HTML safe.
       #
-      #   safe_join([raw("<p>foo</p>"), "<p>bar</p>"], "<br />")
-      #   # => "<p>foo</p>&lt;br /&gt;&lt;p&gt;bar&lt;/p&gt;"
+      #   safe_join([tag.p("foo"), "<p>bar</p>"], "<br>")
+      #   # => "<p>foo</p>&lt;br&gt;&lt;p&gt;bar&lt;/p&gt;"
       #
-      #   safe_join([raw("<p>foo</p>"), raw("<p>bar</p>")], raw("<br />"))
-      #   # => "<p>foo</p><br /><p>bar</p>"
+      #   safe_join([tag.p("foo"), tag.p("bar")], tag.br)
+      #   # => "<p>foo</p><br><p>bar</p>"
       #
       def safe_join(array, sep = $,)
         sep = ERB::Util.unwrapped_html_escape(sep)

Original file line number	Diff line number	Diff line change
`@@ -24,11 +24,11 @@ def raw(stringish)`
`24`	`24`	`# the supplied separator, are HTML escaped unless they are HTML`
`25`	`25`	`# safe, and the returned string is marked as HTML safe.`
`26`	`26`	`#`
`27`		`- # safe_join([raw("<p>foo</p>"), "<p>bar</p>"], "<br />")`
`28`		`- # # => "<p>foo</p><br /><p>bar</p>"`
	`27`	`+ # safe_join([tag.p("foo"), "<p>bar</p>"], "<br>")`
	`28`	`+ # # => "<p>foo</p><br><p>bar</p>"`
`29`	`29`	`#`
`30`		`- # safe_join([raw("<p>foo</p>"), raw("<p>bar</p>")], raw("<br />"))`
`31`		`- # # => "<p>foo</p><br /><p>bar</p>"`
	`30`	`+ # safe_join([tag.p("foo"), tag.p("bar")], tag.br)`
	`31`	`+ # # => "<p>foo</p><br><p>bar</p>"`
`32`	`32`	`#`
`33`	`33`	`def safe_join(array, sep = $,)`
`34`	`34`	`sep = ERB::Util.unwrapped_html_escape(sep)`