Skip to content

Commit

Permalink
MAGETWO-85520: Remove @escapeNotVerified from documentation #12639
Browse files Browse the repository at this point in the history
  • Loading branch information
Oleksii Korshenko authored Dec 12, 2017
2 parents a1ee98a + ce960f9 commit 35b887d
Showing 1 changed file with 6 additions and 8 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -27,16 +27,14 @@ public function testXssSensitiveOutput()
* Static test will cover the following cases:
*
* 1. /\* @noEscape \*\/ before output. Output doesn't require escaping. Test is green.
* 2. /\* @escapeNotVerified \*\/ before output. Output escaping is not checked and
* should be verified. Test is green.
* 3. Methods which contains "html" in their names (e.g. echo $object->{suffix}Html{postfix}() ).
* 2. Methods which contains "html" in their names (e.g. echo $object->{suffix}Html{postfix}() ).
* Data is ready for the HTML output. Test is green.
* 4. AbstractBlock methods escapeHtml, escapeUrl, escapeQuote, escapeXssInUrl are allowed. Test is green.
* 5. Type casting and php function count() are allowed
* 3. AbstractBlock methods escapeHtml, escapeUrl, escapeQuote, escapeXssInUrl are allowed. Test is green.
* 4. Type casting and php function count() are allowed
* (e.g. echo (int)$var, echo (float)$var, echo (bool)$var, echo count($var)). Test is green.
* 6. Output in single quotes (e.g. echo 'some text'). Test is green.
* 7. Output in double quotes without variables (e.g. echo "some text"). Test is green.
* 8. Other of p.1-7. Output is not escaped. Test is red.
* 5. Output in single quotes (e.g. echo 'some text'). Test is green.
* 6. Output in double quotes without variables (e.g. echo "some text"). Test is green.
* 7. Other of p.1-6. Output is not escaped. Test is red.
*
* @param string $file
*/
Expand Down

0 comments on commit 35b887d

Please sign in to comment.