* */ static function clean($html) { return new SafeString($html); } /** * Returns a string that is safe to be used in HTML (XSS protection), * purifying (filtering) the given HTML to ensure that the result contains * only non-malicious HTML. * * Example:

   *   
title) ?> 
   * 

*/ static function purify($html) { return SafeString::purify($html); } /** * Flags the given string as safe to be used in HTML (free of malicious HTML/JS). * * Example:

   *   // Parameters to t() are automatically escaped by default.
   *   // If the parameter is marked as safe, it won't get escaped.
   *   t('Go there',
   *     array("url" => html::mark_safe(url::current())))
   * 

*/ static function mark_safe($html) { return SafeString::of_safe_html($html); } /** * Escapes the given string for use in JavaScript. * * Example:

   *   
   * 

* @return the string escaped for use in HTML attributes. */ static function clean_attribute($string) { return self::clean($string)->for_html_attr(); } }