ytt icon indicating copy to clipboard operation
ytt copied to clipboard
verified publisher icon carvel-dev

Add an optional boolean to not escape html during json encoding

Open WnP opened this issue 1 year ago • 1 comments

By default the golang encode does escape problematic HTML characters inside JSON quoted strings. Which may leads to undesired behavior.

A typical example is when you are using the argocd-vault-plugin syntax inside a json string, which looks like this:

#@data/values
---
credentials:
  username: bob
  password: <path:/to/bob/password>

Then if I want to create a secret with

#@ load("@ytt:data", "data")
#@ load("@ytt:json", "json")
stringData: #@ json.encode(data.values.credentials, indent=2)

Then it compiles to:

stringData: |-
  {
    "username": "bob",
    "password": "\u003cpath:/to/bob/password\u003e"
  }

Which obviously isn't what we want.

It would be nice if we can call Encode.SetEscapeHTML somehow to prevent that.

WnP avatar Jan 29 '24 16:01 WnP

@100mik this seems a valid ask, I think we should accept it.

prembhaskal avatar Jan 30 '24 14:01 prembhaskal