lib/onebox/engine/giphy_onebox.rb in onebox-1.7.3 vs lib/onebox/engine/giphy_onebox.rb in onebox-1.7.4
- old
+ new
@@ -7,13 +7,15 @@
matches_regexp(/^https?:\/\/(giphy\.com\/gifs|gph\.is)\//)
always_https
def to_html
oembed = get_oembed
+ escaped_url = ::Onebox::Helpers.normalize_url_for_output(oembed[:url])
+ escaped_src = ::Onebox::Helpers.normalize_url_for_output(oembed[:image])
<<-HTML
- <a href="#{oembed[:url]}" target="_blank">
- <img src="#{oembed[:image]}" width="#{oembed[:width]}" height="#{oembed[:height]}" #{Helpers.title_attr(oembed)}>
+ <a href="#{escaped_url}" target="_blank">
+ <img src="#{escaped_src}" width="#{oembed[:width]}" height="#{oembed[:height]}" #{Helpers.title_attr(oembed)}>
</a>
HTML
end
end