Ask questionshtml/template: add support for template strings (backticks)
If you open the output of the above program in a modern browser (e.g., recently released Mozilla Firefox 34 supports template strings), it will happily execute alert(1).
<a href="https://people.mozilla.org/~jorendorff/es6-draft.html">https://people.mozilla.org/~jorendorff/es6-draft.html</a> <a href="https://html5sec.org/#140">https://html5sec.org/#140</a> <a href="https://html5sec.org/#141">https://html5sec.org/#141</a></pre>
Answer questions ijt
Hi all, I found that Go's template package seems to be treating
<script>let u = `https://foo.com`;</script>
<script>let u = `https:</script>
Here's a playground link for this: https://play.golang.org/p/dvW0mCby1ED. Is it intentional?