Mark fields in TeX templates as safe

This commit is contained in:
Yohann D'ANELLO 2020-08-14 19:35:21 +02:00
parent 21ba46c1bc
commit eca4767155
2 changed files with 4 additions and 3 deletions

View File

@ -137,7 +137,7 @@ class Product(models.Model):
@property
def amount_euros(self):
return self.amount / 100
return "{:.2f}".format(self.amount / 100)
@property
def total(self):
@ -145,7 +145,7 @@ class Product(models.Model):
@property
def total_euros(self):
return self.total / 100
return "{:.2f}".format(self.total / 100)
class Meta:
verbose_name = _("product")

View File

@ -2,10 +2,11 @@
# SPDX-License-Identifier: GPL-3.0-or-later
from django import template
from django.utils.safestring import mark_safe
def do_latex_escape(value):
return (
return mark_safe(
value.replace("&", "\\&")
.replace("$", "\\$")
.replace("%", "\\%")