mirror of
https://github.com/gohugoio/hugo.git
synced 2024-12-03 00:33:43 -05:00
1.2 KiB
1.2 KiB
title | description | categories | keywords | action | toc | aliases | ||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
safe.HTML | Declares the given string as a safeHTML string. |
|
true |
|
Introduction
{{% include "functions/_common/go-html-template-package.md" %}}
Usage
Use the safe.HTML
function to encapsulate a known safe HTML document fragment. It should not be used for HTML from a third-party, or HTML with unclosed tags or comments.
Use of this type presents a security risk: the encapsulated content should come from a trusted source, as it will be included verbatim in the template output.
See the Go documentation for details.
Example
Without a safe declaration:
{{ $html := "<em>emphasized</em>" }}
{{ $html }}
Hugo renders the above to:
<em>emphasized</em>
To declare the string as safe:
{{ $html := "<em>emphasized</em>" }}
{{ $html | safeHTML }}
Hugo renders the above to:
<em>emphasized</em>