lib/onebox/engine/soundcloud_onebox.rb in onebox-1.7.3 vs lib/onebox/engine/soundcloud_onebox.rb in onebox-1.7.4
- old
+ new
@@ -11,10 +11,11 @@
oembed_data[:html].gsub('visual=true', 'visual=false')
end
def placeholder_html
return if Onebox::Helpers.blank?(oembed_data[:thumbnail_url])
- "<img src='#{oembed_data[:thumbnail_url]}' #{Helpers.title_attr(oembed_data)}>"
+ escaped_src = ::Onebox::Helpers.normalize_url_for_output(oembed_data[:thumbnail_url])
+ "<img src='#{escaped_src}' #{Helpers.title_attr(oembed_data)}>"
end
private
def oembed_data