fix(utils/code): encode HTML entities

Previously, the encoding was allowing things like `
` to be passed through
unencoded. This was leading to some issues in display.  The trade off is that
we can no longer specify unusual chars as HTML entities in our code blocks,
but this seems correct to me.

Author: petebacondarwin

utils/code.js

@@ -1,12 +1,12 @@
 var encoder = new require('node-html-encoder').Encoder();
 module.exports = function(str, inline, lang) {
- 
+
   // Encode any HTML entities in the code string
-  str = encoder.htmlEncode(str);
+  str = encoder.htmlEncode(str, true);
 
   // If a language is provided then attach a CSS class to the code element
   lang = lang ? ' class="lang-' + lang + '"' : '';
-  
+
   str = '<code' + lang + '>' + str + '</code>';
 
   // If not inline then wrap the code element in a pre element

utils/spec/code.spec.js

@@ -7,6 +7,9 @@ describe("code utility", function() {
   it("should HTML encode the string", function() {
     expect(code('<div>&</div>')).toEqual('<pre><code>&lt;div&gt;&amp;&lt;/div&gt;</code></pre>');
   });
+  it("should encode HTML entities", function() {
+    expect(code('<div>&#10;</div>')).toEqual('<pre><code>&lt;div&gt;&amp;#10;&lt;/div&gt;</code></pre>');
+  });
 
   describe("inline", function() {
     it("should only wrap in a code tag", function() {
@@ -19,4 +22,4 @@ describe("code utility", function() {
       expect(code('abc', true, 'js')).toEqual('<code class="lang-js">abc</code>');
     });
   });
-});
+});