It's a toaster not a shell!
-
Did somebody from here fall on the sword to tell them about it? Or are they no longer banning TDWTF users with extreme prejudice for submitting bug reports?
-
There's a bug report around here somewhere that links to the fail.d thread.
-
Well, I'd assume it's probably linked somewhere in the thread where we found the bug, but I don't remember seeing any and the thread's dropped off my radar now.
-
I'm certainly not going to look for it for you.
-
Yeah, I got that from your other post. Thanks though.
-
Now that Discourse has "fixed" the embed-JavaScript-in-YouTube-titles bug, instead of not-showing YouTube videos that have a < in their title, now it also dosn't show YouTube videos that have a ".
It wouldn't be a Discourse™ 'fix' if it didn't break something new only partly related to the original problem.
-
and no i won't explain what a "love hotel" is, you can learn that for yourself
Is it where magnets go to have sex?
-
<div ::snip:: data-youtube-title="Let's Play: " clyde="" the="" hedgehog="" data-width="480" data-height="270" data-parameters="feature=oembed&wmode=opaque">
That's really special.
-
Nah, just what the browser tried to turn
<div ::snip:: data-youtube-title="Let's Play: "clyde the hedgehog"" data-width="480" data-height="270" data-parameters="feature=oembed&wmode=opaque">
into, since that's malformed. The
data-youtube-title
attribute ended at the naughty"
afterhedgehog
, and then it tried to interpret every word after that as another attribute name, with no value.
-
Yeah, it's a shame that HTML uses double quotes to delineate attribute values, and:
- there's no way to represent a
"
any way other than literally in HTML - no other characters other than
"
can mark the start and end of the value
So I guess it's not laziness and incompetance from the discodevs this once.
Filed under: this is sarcasm
- there's no way to represent a
-
Well... that is special. Upon firing up the network monitor and capturing and looking at the actual cooked HTML in the JSON, it looks like this...
<div class="lazyYT" data-youtube-id="UO_jneJGrpQ" data-youtube-title="Let's Play: " clyde the hedgehog data-width="480" data-height="270" data-parameters="feature=oembed&wmode=opaque"></div><hr><p>Now that Discourse has "fixed" the embed-JavaScript-in-YouTube-titles bug, instead of not-showing YouTube videos that have a <code><</code> in their title, now it also dosn't show YouTube videos that have a <code>"</code>. Big improvement. Much better than just properly unescaping the title as served from YouTube.</p>
It looks like they actually tried to sanitize it, at least so that it's syntactically valid HTML.
-
For comparison, here's the video on Youtube. The title was supposed to be
Let's Play: "Clyde the Hedgehog"
, before Discourse mangled it.no other characters other than
"
can mark the start and end of the valueAh! but that title contained both
'
and"
... so what's a good dev to do?! Either delimiter you use will be wrong!
-
Ah! but that title contained both
'
and"
... so what's a good dev to do?! Either delimiter you use will be wrong!A good dev would write some JavaScript that makes clever™ guesses which
'
s and"
s are part of a value and replace them with a similar characters like‘
and“
. And/or replaces all"
s by double ''s.
-
No, md5s should be involved.
-
Why not both? And some XML besides that...
-
-
-
I don't care about badges; I just want to see people get hilariously angry
over badges.Normally I'd exhort whoever I just made that change to to admit it, but you already have.
-
-
Or are they no longer banning TDWTF users with extreme prejudice for submitting bug reports?
Naw, they just delete your post. *points up at post title*
-
Unsure if reference to my being a workaholic, or a reprehensible human being or terminally single. Perhaps all of the above.
-
Unsure if reference to my being a workaholic, or a reprehensible human being or terminally single. Perhaps all of the above.
I was unaware of your reprehensibility until now, so it'd have to be, at most, the first and last of those.
-
And looks like Bionicle head to me, so I will assume you're talking about Bionicle.
You really need your vision checked...
Oh, by @weng, damn. Oh well. Am I too late to be called a cunt?
-
-
-
I mean, it's not like sexting requires a time commitment.
-
Fair enough
-
doing things because they're cool to other programmers
This particular toaster does not contain a proper parser, or a shell with any depth at all. It is therefore not cool; it is lame. It's "cool to programmers" as understood by marketroids.
-
-
when I see , I don't read it as "doing it wrong" - I read it as "Jeff"
To be fair, those are merely two different ways to pronounce the same word.
-
Is entity encoding REALLY that hard to do?
FFS, I'm a PHP dev and even I can get it right in both PHP and JS.
I don't even need help from this to get it right.
-
Is entity encoding REALLY that hard to do?
FFS, I'm a PHP dev and even I can get it right in both PHP and JS.
I don't even need help from this to get it right.
No, not really hard at all. Unless you're a discodev...