[jira] [Updated] (SLING-11768) Display Context "scriptString" encodes hyphen (-) as \u002D

Konrad Windszus (Jira) Wed, 08 Feb 2023 03:55:07 -0800


     [ 
https://issues.apache.org/jira/browse/SLING-11768?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Konrad Windszus updated SLING-11768:
------------------------------------
    Summary: Display Context "scriptString" encodes hyphen (-) as \u002D  (was: 
Display Context "scriptString" escapes hypen (-) with \u002D)

> Display Context "scriptString" encodes hyphen (-) as \u002D
> -----------------------------------------------------------
>
>                 Key: SLING-11768
>                 URL: https://issues.apache.org/jira/browse/SLING-11768
>             Project: Sling
>          Issue Type: Bug
>          Components: HTL, XSS Protection API
>            Reporter: Konrad Windszus
>            Priority: Major
>
> According to 
> https://github.com/adobe/htl-spec/blob/master/SPECIFICATION.md#121-display-context
>  the context {{scriptString}} should only encode
> {quote}
> ... characters that would break out of the string.
> {quote}
> But {{AAA-BBB}} incorrectly becomes {{AAA\u002DBBB}} through this context



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (SLING-11768) Display Context "scriptString" encodes hyphen (-) as \u002D

Reply via email to