elsif colour_value = colour_preview(key, value)
tag.span("", :class => "colour-preview-box", :"data-colour" => colour_value, :title => t("browse.tag_details.colour_preview", :colour_value => colour_value)) + colour_value
else
- safe_join(h(value).split(";").map { |x| linkify(x) }, ";")
+ safe_join(value.split(";").map { |x| linkify(h(x)) }, ";")
end
end
nil
end
- def email_link(_key, value)
+ def email_link(key, value)
+ # Avoid converting conditional tags into emails, since EMAIL_REGEXP is quite permissive
+ return nil unless %w[email contact:email].include? key
+
# Does the value look like an email? eg "someone@domain.tld"
# Uses Ruby built-in regexp to validate email.