It feels like html_safe adds an abstraction to the String class that requires understanding of what is going on, …
ruby-on-rails ruby-on-rails-3 xss html-escape html-safeI have two pieces of code in my view: <%= sanitize('<h3>winter</h3>') %&…
ruby-on-rails-4 sanitize difference html-safe