Skip to content

Instantly share code, notes, and snippets.

@robertknight

robertknight/quotes.md Secret

Last active December 9, 2016 08:10
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save robertknight/f010d0793a0ded4476d380d267023bd2 to your computer and use it in GitHub Desktop.
Save robertknight/f010d0793a0ded4476d380d267023bd2 to your computer and use it in GitHub Desktop.
Download ZIP
Hypothesis Quote Text
Raw
quotes.md

Test cases for HTML escaping in annotation quotes:

<b>Hello World</b>
<i>Hello World</i>
<img src="https://media.giphy.com/media/OUjcFvpzMzlGU/giphy.gif">

<audio src="http://developer.mozilla.org/@api/deki/files/2926/=AudioTest_(1).ogg" autoplay>
  Your browser does not support the <code>audio</code> element.
</audio>

<style>body { display: none }</style>
<script>alert('foo')</script>

<img src="https://media.giphy.com/media/hDSy8w6rGHeTe/giphy.gif" onclick="alert('foo')">

<img src="https://media.giphy.com/media/hDSy8w6rGHeTe/giphy.gif" ng-click="alert('foo')">
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment