#2830: add html.escape() helper and move cgi.escape() uses in the standard library to it. It defaults to quote=True and also escapes single quotes, which makes casual use safer. The cgi.escape() interface is not touched, but emits a (silent) PendingDeprecationWarning.

commit: 1f7fffb308390d10a2c6a4ec624f18cfeef97aeb [log] [tgz]
author: Georg Brandl <georg@python.org> Fri Oct 15 15:57:45 2010 +0000
committer: Georg Brandl <georg@python.org> Fri Oct 15 15:57:45 2010 +0000
tree: 65e2437904ba089004c69c77b49e5059623b83fb
parent: 70543acfa1bce2e5f448d8d0085df595bfa9a2f9 [diff] [blame]
diff --git a/Lib/test/test_html.py b/Lib/test/test_html.py
new file mode 100644
index 0000000..30dac58
--- /dev/null
+++ b/Lib/test/test_html.py

@@ -0,0 +1,24 @@
+"""
+Tests for the html module functions.
+"""
+
+import html
+import unittest
+from test.support import run_unittest
+
+
+class HtmlTests(unittest.TestCase):
+    def test_escape(self):
+        self.assertEqual(
+            html.escape('\'<script>"&foo;"</script>\''),
+            '&#x27;&lt;script&gt;&quot;&amp;foo;&quot;&lt;/script&gt;&#x27;')
+        self.assertEqual(
+            html.escape('\'<script>"&foo;"</script>\'', False),
+            '\'&lt;script&gt;"&amp;foo;"&lt;/script&gt;\'')
+
+
+def test_main():
+    run_unittest(HtmlTests)
+
+if __name__ == '__main__':
+    test_main()
commit	1f7fffb308390d10a2c6a4ec624f18cfeef97aeb	[log] [tgz]
author	Georg Brandl <georg@python.org>	Fri Oct 15 15:57:45 2010 +0000
committer	Georg Brandl <georg@python.org>	Fri Oct 15 15:57:45 2010 +0000
tree	65e2437904ba089004c69c77b49e5059623b83fb
parent	70543acfa1bce2e5f448d8d0085df595bfa9a2f9 [diff] [blame]