Renukutty · July 9, 2021 14:42
diff --git a/controllers.application\.js b/controllers.application\.js
 import Ember from 'ember';

 export default Ember.Controller.extend({
  appName: 'Ember Twiddle',
  
  Img_tag: Ember.Handlebars.Utils.escapeExpression('<img src="" onerror=alert();>'),
  
  Img_tag_with_tag:'<b>'+Ember.Handlebars.Utils.escapeExpression('<img src="" onerror=alert();>')+'</b>',
  
  withoutEscExpress: '<img src="" onerror=alert();>',
  
  withoutEscExpress_with_tag:'<b>'+'<img src="" onerror=alert();>'+'</b>',
  
 });
diff --git a/templates.application\.hbs b/templates.application\.hbs
 <h1>With escapeExpression</h1>
 <h2>Double braces</h2>
 {{outlet}}
 {{Img_tag}}
 <br>
 <br>
 <h2>Triple braces</h2>
 {{outlet}}
 {{{Img_tag}}}
 <hr>

 <h1>With escapeExpression with tag</h1>
 <h2>Double braces</h2>
 {{outlet}}
 {{Img_tag_with_tag}}
 <h2>Triple braces</h2>
 {{outlet}}
 {{{Img_tag_with_tag}}}
 <br>
 <br>

 <hr>

 <h1>Without escapeExpression</h1>
 <h2>Double braces</h2>
 {{outlet}}
 {{withoutEscExpress}}
 <br>
 <br>
 <h2>Triple braces</h2>
 {{outlet}}
 Script executed here {{{withoutEscExpress}}}
 <hr>

 <h1>Without escapeExpression with tag</h1>
 <h2>Double braces</h2>
 {{outlet}}
 {{withoutEscExpress_with_tag}}
 <h2>Triple braces</h2>
 {{outlet}}
 Script executed here {{{withoutEscExpress_with_tag}}} 
 <br>
 <br>
diff --git a/twiddle\.json b/twiddle\.json
 {
  "version": "0.17.1",
  "EmberENV": {
    "FEATURES": {},
    "_TEMPLATE_ONLY_GLIMMER_COMPONENTS": false,
    "_APPLICATION_TEMPLATE_WRAPPER": true,
    "_JQUERY_INTEGRATION": true
  },
  "options": {
    "use_pods": false,
    "enable-testing": false
  },
  "dependencies": {
    "jquery": "https://cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.js",
    "ember": "3.18.1",
    "ember-template-compiler": "3.18.1",
    "ember-testing": "3.18.1"
  },
  "addons": {
    "@glimmer/component": "1.0.0"
  }
 }
	import Ember from 'ember';

	export default Ember.Controller.extend({
	appName: 'Ember Twiddle',

	Img_tag: Ember.Handlebars.Utils.escapeExpression('<img src="" onerror=alert();>'),

	Img_tag_with_tag:'<b>'+Ember.Handlebars.Utils.escapeExpression('<img src="" onerror=alert();>')+'</b>',

	withoutEscExpress: '<img src="" onerror=alert();>',

	withoutEscExpress_with_tag:'<b>'+'<img src="" onerror=alert();>'+'</b>',

	});
	<h1>With escapeExpression</h1>
	<h2>Double braces</h2>
	{{outlet}}
	{{Img_tag}}
	<br>
	<br>
	<h2>Triple braces</h2>
	{{outlet}}
	{{{Img_tag}}}
	<hr>

	<h1>With escapeExpression with tag</h1>
	<h2>Double braces</h2>
	{{outlet}}
	{{Img_tag_with_tag}}
	<h2>Triple braces</h2>
	{{outlet}}
	{{{Img_tag_with_tag}}}
	<br>
	<br>

	<hr>

	<h1>Without escapeExpression</h1>
	<h2>Double braces</h2>
	{{outlet}}
	{{withoutEscExpress}}
	<br>
	<br>
	<h2>Triple braces</h2>
	{{outlet}}
	Script executed here {{{withoutEscExpress}}}
	<hr>

	<h1>Without escapeExpression with tag</h1>
	<h2>Double braces</h2>
	{{outlet}}
	{{withoutEscExpress_with_tag}}
	<h2>Triple braces</h2>
	{{outlet}}
	Script executed here {{{withoutEscExpress_with_tag}}}
	<br>
	<br>
	{
	"version": "0.17.1",
	"EmberENV": {
	"FEATURES": {},
	"_TEMPLATE_ONLY_GLIMMER_COMPONENTS": false,
	"_APPLICATION_TEMPLATE_WRAPPER": true,
	"_JQUERY_INTEGRATION": true
	},
	"options": {
	"use_pods": false,
	"enable-testing": false
	},
	"dependencies": {
	"jquery": "https://cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.js",
	"ember": "3.18.1",
	"ember-template-compiler": "3.18.1",
	"ember-testing": "3.18.1"
	},
	"addons": {
	"@glimmer/component": "1.0.0"
	}
	}