From 0dee5602cacb46e1120bc2339464c89bea34ddaa Mon Sep 17 00:00:00 2001
From: Marko Gronroos <magi@vaadin.com>
Date: Thu, 11 Feb 2016 19:48:45 +0200
Subject: Fixed critically broken comment blocks, broken emphasis and escaping,
 and some other formatting, and moved book preface, chapter structure, and
 index to the docs repository.

Change-Id: If9299da4415f3181d59b8384e5ac96f940bd5229
---
 documentation/advanced/advanced-security.asciidoc | 13 ++++---------
 1 file changed, 4 insertions(+), 9 deletions(-)

(limited to 'documentation/advanced/advanced-security.asciidoc')

diff --git a/documentation/advanced/advanced-security.asciidoc b/documentation/advanced/advanced-security.asciidoc
index d3b0a5249c..e04a3bc067 100644
--- a/documentation/advanced/advanced-security.asciidoc
+++ b/documentation/advanced/advanced-security.asciidoc
@@ -20,11 +20,10 @@ attack] by injecting offensive JavaScript code in such components. See other
 sources for more information about cross-site scripting.
 
 Offensive code can easily be injected with [literal]#++<script>++# markup or in
-tag attributes as events, such as
-[parameter]#onLoad#.////
-TODO Consider an example, Alice, Bob,
-etc.
-////
+tag attributes as events, such as [parameter]#onLoad#.
+
+// TODO Consider an example, Alice, Bob, etc.
+
 Cross-site scripting vulnerabilities are browser dependent, depending on the
 situations in which different browsers execute scripting markup.
 
@@ -50,7 +49,3 @@ and is not sanitized. As the entire purpose of the [classname]#RichTextArea#
 component is to allow input of formatted text, you can not just remove all HTML
 tags. Also many attributes, such as [parameter]#style#, should pass through the
 sanitization.
-
-
-
-
-- 
cgit v1.2.3