Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fixed single quote error #47

Open
wants to merge 19 commits into
base: master
Choose a base branch
from
Open

Fixed single quote error #47

wants to merge 19 commits into from

Conversation

maxwilkinsontech
Copy link

Hi,

When the field content contains a single quote, I get the error:

Uncaught SyntaxError: missing ) after argument list

This is due to the value widget template variable not being escaped and causing situations like:

wrapper.quill.clipboard.dangerouslyPasteHTML(0, '{"delta":"{\"ops\":[{\"insert\":\"'\\n\"}]}","html":"<p>'</p>"}')

which is causing the error above.

When this error occurs, the quilljs widget does not render at all.

Adding the escape filter to the dangerouslyPasteHTML function argument seems to fix this bug.

Cheers.

LeeHanYeong and others added 19 commits July 14, 2020 10:06
@LeeHanYeong
Update README.md
9962c1b
@michaldyczko
Bug fixes (LeeHanYeong#20)
be1352a 
* Fix content damage on validation error
* Fix fixtures format and enable null values
* Fixed non-saving data of dynamically created quills
* Poetry fix
* Setup fix

Co-authored-by: Michał Dyczko <[email protected]>
@LeeHanYeong
Deletion of dynamically generated form processing logic, bug fix
4d85604
@LeeHanYeong
Docs update
e1288e2
@Pierox57
Update widgets.py
b6f26c1 
LeeHanYeong#22 (comment)
@LeeHanYeong
Merge pull request LeeHanYeong#23 from Pierox57/patch-1
d602b0d 
Update widgets.py
@LeeHanYeong
bump to 0.1.15
2c6fe47
@LeeHanYeong
Update setup.py classifiers
76e6e72
rewrite QuillField to inherit JSONField (LeeHanYeong#27)
a362dca 
this allows the db backend to apply any optimizations it might want/need
closes LeeHanYeong#26

Co-authored-by: proxi <[email protected]>
@cdesch
Bump to Quill Version 1.3.7 (LeeHanYeong#34)
1ee92ab 
* Bump to Quill Version 1.3.7

Bump to Quill Version 1.3.7 - This version of Quill fixes Quill Vuln slab/quill#2438

Here is the change commit to fix the vuln in Quill slab/quill#2439

The Vuln is described here: https://ossindex.sonatype.org/vuln/d96c07dd-81f9-41f6-b2bd-531143bcaeab

* Adding JS/CSS include instructions from README.md

Resolves issue [LeeHanYeong#33](LeeHanYeong#33)
@LeeHanYeong
bump to 0.1.18
b7092cb
@gokselcoban
fix inconsistent quill versions (LeeHanYeong#37)
e4d1746
@LeeHanYeong
bump to 0.1.19
f867a96
@cdesch
Fixing issue LeeHanYeong#38 AttributeError 'NoneType' object has no a…
4b96c1c 
…ttribute 'json_string' (LeeHanYeong#41)

* Bump to Quill Version 1.3.7

Bump to Quill Version 1.3.7 - This version of Quill fixes Quill Vuln slab/quill#2438

Here is the change commit to fix the vuln in Quill slab/quill#2439

The Vuln is described here: https://ossindex.sonatype.org/vuln/d96c07dd-81f9-41f6-b2bd-531143bcaeab

* Adding JS/CSS include instructions from README.md

Resolves issue [LeeHanYeong#33](LeeHanYeong#33)

* adding None return for json_string
@LeeHanYeong
Drop support Django 3.0
8504fa6
@LeeHanYeong
Delete unused files
3c6e2c8
@LeeHanYeong
README update, Remove hash from requirements
094a553
@LeeHanYeong
Including playground app, adding test code, canceling JSONField appli…
f01c6c9 
…cation
@maxwilkinsontech
Added escape filter to dangerouslyPasteHTML argument
97b9d87
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@maxwilkinsontech @LeeHanYeong @michaldyczko @Pierox57 @cdesch @gokselcoban