bc1f084c4b
A ternary operator is considered safe by the Twig auto-escaping only when both branches are safe. But this ternary was safe only in the ELSE branch, causing it to be unsafe. This triggered a double-escaping of the value (escaping the output of the dump). The fix is to use a {% if %} and 2 separate output statements, allowing them to be auto-escaped separately. |
||
---|---|---|
.. | ||
Command | ||
DataCollector | ||
DependencyInjection | ||
EventListener | ||
Resources | ||
Security | ||
Templating/Helper | ||
Tests | ||
.gitignore | ||
CHANGELOG.md | ||
composer.json | ||
LICENSE | ||
phpunit.xml.dist | ||
README.md | ||
SecurityBundle.php | ||
SecurityUserValueResolver.php |