From 3defdd7fc81dd9575bf713bd7e40eba8e2df1bfc Mon Sep 17 00:00:00 2001
From: Alinson Santos <isoron@gmail.com>
Date: Wed, 12 Mar 2008 18:57:21 -0300
Subject: [PATCH] escaping

---
 app/views/users/dashboard.html.haml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/views/users/dashboard.html.haml b/app/views/users/dashboard.html.haml
index 8e36941..823c979 100644
--- a/app/views/users/dashboard.html.haml
+++ b/app/views/users/dashboard.html.haml
@@ -22,7 +22,7 @@
             = link_to(h(n.course.full_name), course_url(n.course)) + " &rsaquo;"
             = link_to(h(n.title), course_news_url(n.course, n))
             - unless n.body.empty?
-              %p= truncate(n.body, 300)
+              %p= truncate(h(n.body), 300)
 
   .box
     .cmd