mirror of
https://github.com/gohugoio/hugo.git
synced 2024-11-14 20:37:55 -05:00
5fd1e74903
``` git subtree add --prefix=docs/ https://github.com/gohugoio/hugoDocs.git master --squash ``` Closes #11925
26 lines
1.1 KiB
Markdown
26 lines
1.1 KiB
Markdown
---
|
|
title: safe.JS
|
|
description: Declares the given string as a safe JavaScript expression.
|
|
categories: []
|
|
keywords: []
|
|
action:
|
|
aliases: [safeJS]
|
|
related:
|
|
- functions/safe/CSS
|
|
- functions/safe/HTML
|
|
- functions/safe/HTMLAttr
|
|
- functions/safe/JSStr
|
|
- functions/safe/URL
|
|
returnType: template.JS
|
|
signatures: [safe.JS INPUT]
|
|
aliases: [/functions/safejs]
|
|
---
|
|
|
|
In this context, *safe* means the string encapsulates a known safe EcmaScript5 Expression (e.g., `(x + y * z())`).
|
|
|
|
Template authors are responsible for ensuring that typed expressions do not break the intended precedence and that there is no statement/expression ambiguity as when passing an expression like `{ foo:bar() }\n['foo']()`, which is both a valid expression and a valid program with a very different meaning.
|
|
|
|
Example: Given `hash = "619c16f"` defined in the front matter of your `.md` file:
|
|
|
|
* `<script>var form_{{ .Params.hash | safeJS }};…</script>` → `<script>var form_619c16f;…</script>`
|
|
* `<script>var form_{{ .Params.hash }};…</script>` → `<script>var form_"619c16f";…</script>`
|