Fix insufficient sanitization of report comments

This commit is contained in:
Claire 2022-02-02 13:30:02 +01:00
parent e2009ced3a
commit b27f50da5a

View file

@ -92,7 +92,7 @@
%hr.spacer
.speech-bubble
.speech-bubble__bubble= simple_format(@report.comment.presence || t('admin.reports.comment.none'))
.speech-bubble__bubble= simple_format(h(@report.comment.presence || t('admin.reports.comment.none')))
.speech-bubble__owner
- if @report.account.local?
= admin_account_link_to @report.account