include::../description.adoc[]

include::../ask-yourself.adoc[]

include::../recommended.adoc[]

== Sensitive Code Example

----
public function loadTwig()
{
  $twig = new \Twig_Environment(new \Twig_Loader_String(), [
    'autoescape' => false, // Sensitive
  ]);

  $escaper = new \Twig_Extension_Escaper(false); // Sensitive
  $twig->addExtension($escaper);
}
----

== Compliant Solution

----
public function loadTwig()
{
  $twig = new \Twig_Environment(new \Twig_Loader_String(), [
    'autoescape' => true, // Compliant
  ]);

  $escaper = new \Twig_Extension_Escaper(true); // Compliant
  $twig->addExtension($escaper);
}
----

include::../see.adoc[]