Improve HTML escaping helper (#12562)

The previous method did not escape single quotes which under some circumstances can lead to XSS vulnerabilites and the fact that it depends on jQuery is also not ideal. Replace it with a lightweight module.
author: silverwind <me@silverwind.io> 2020-08-22 14:36:56 +0200
committer: GitHub <noreply@github.com> 2020-08-22 13:36:56 +0100
commit: ee5e5a50934906df476c3b898c2fe8e0df984f3c (patch)
tree: a4f3a6c30e862ca77bb509d122cdfc04912e258a /package.json
parent: 03ba12aabf95ced8398c7859deff76780a4577cd (diff)
download: gitea-ee5e5a50934906df476c3b898c2fe8e0df984f3c.tar.gz
gitea-ee5e5a50934906df476c3b898c2fe8e0df984f3c.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/package.json b/package.json
index ce14631d70..fe2c6193cc 100644
--- a/package.json
+++ b/package.json
@@ -18,6 +18,7 @@
     "cssnano": "4.1.10",
     "domino": "2.1.5",
     "dropzone": "5.7.0",
+    "escape-goat": "3.0.0",
     "fast-glob": "3.2.2",
     "file-loader": "6.0.0",
     "fomantic-ui": "2.8.4",
author	silverwind <me@silverwind.io>	2020-08-22 14:36:56 +0200
committer	GitHub <noreply@github.com>	2020-08-22 13:36:56 +0100
commit	ee5e5a50934906df476c3b898c2fe8e0df984f3c (patch)
tree	a4f3a6c30e862ca77bb509d122cdfc04912e258a /package.json
parent	03ba12aabf95ced8398c7859deff76780a4577cd (diff)
download	gitea-ee5e5a50934906df476c3b898c2fe8e0df984f3c.tar.gz gitea-ee5e5a50934906df476c3b898c2fe8e0df984f3c.zip