forge/Anvil
1
0
Fork 0
Code Pull requests Activity

fix: prevent XSS

Browse source 
I learned that I don't have to pass in the html thingy.

Signed-off-by: André Jaenisch <andre.jaenisch@posteo.de>
This commit is contained in:
André Jaenisch 2024-02-21 18:13:27 +01:00
parent 0107a83f90
commit 4264975a16
No known key found for this signature in database
GPG key ID: 5A668E771F1ED854
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
src/lib/components/atoms/DisplayName.svelte
View file

@ -15,6 +15,6 @@
<h1 class="h1 font-semibold text-4xl leading-tight">
<!-- FIXME: Include placeholder in i18n -->
<span class="sr-only">{$_('page.profile.heading')}</span>
{@html displayName}
{displayName}
</h1>
<p class="leading-normal my-1">({@html pronoun})</p>
<p class="leading-normal my-1">({pronoun})</p>