docs: fix CI3 sample code

kenjis · kenjis · commit bc2bd33c79e4 · 2022-12-27T09:32:39.000+09:00
Even when CI3 is used, protection against XSS is of course necessary.
diff --git a/user_guide_src/source/installation/upgrade_controllers/ci3sample/001.php b/user_guide_src/source/installation/upgrade_controllers/ci3sample/001.php
@@ -4,6 +4,6 @@ class Helloworld extends CI_Controller
 {
     public function index($name)
     {
-        echo "Hello $name! ";
+        echo 'Hello ' . html_escape($name) . '!';
     }
 }
diff --git a/user_guide_src/source/installation/upgrade_views/ci3sample/001.php b/user_guide_src/source/installation/upgrade_views/ci3sample/001.php
@@ -1,15 +1,15 @@
 <html>
 <head>
-    <title><?php echo $title; ?></title>
+    <title><?php echo html_escape($title); ?></title>
 </head>
 <body>
-    <h1><?php echo $heading; ?></h1>
+    <h1><?php echo html_escape($heading); ?></h1>
 
     <h3>My Todo List</h3>
 
     <ul>
     <?php foreach ($todo_list as $item): ?>
-        <li><?php echo $item; ?></li>
+        <li><?php echo html_escape($item); ?></li>
     <?php endforeach; ?>
     </ul>
 

Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,6 @@ class Helloworld extends CI_Controller`
`4`	`4`	`{`
`5`	`5`	`public function index($name)`
`6`	`6`	`{`
`7`		`- echo "Hello $name! ";`
	`7`	`+ echo 'Hello ' . html_escape($name) . '!';`
`8`	`8`	`}`
`9`	`9`	`}`