States are rendered as attributes - HTML

[zpokoin]

So here's the html I have added. For the disabled state, and checked state, it automatically adds the equal signs and quotations.

Is there a way to remove on for those states?

[ccampbell]

I think this has to do with the browser treating it as html. Rainbow shouldn’t add anything itself.

For HTML highlighting you have to use HTML entities. Try replacing < with < and > with >.

[joshgoebel]

@ccampbell Is there a reason you don't encourage this (make it more obvious) by using textContent or innerText instead of innerHTML? See my concerns on the thread I started on security concerns and users confused about this very topic.

Have we worked on anything before? Your name/avatar looks a little familiar.

[LucaGabi]

If you call innerText is the html preserved ?

would it not be better to just replace tags with < > ?

[joshgoebel]

Version 11 of Highlight.js logs an error to the console in this situation and purposely strips all HTML (instead of rewriting it and merging it back as version 10 did). This is dangerous and should only be done by those who for sure know they want this behavior - and if so it can be added back with a plugin and option to turn off the security warning.