If you get one of these errors, it's highly likely that you've upgraded to Rails 2.2 or higher:

undefined method white_list_sanitizer' for String:Class
undefined method full_sanitizer' for String:Class

The fix is to extend the SanitizeHelper.

class String
  extend ActionView::Helpers::SanitizeHelper::ClassMethods
end

Thinking about escaping and sanitizing input and output? Read this: https://security.stackexchange.com/questions/95325/input-sanitization-vs-output-sanitization

Rules:

• Always sanitize output

You can fix bugs in the input sanitizer without touching the database by always sanitizing output.

• Sanitize input, if it makes sense:

For example, if there’s a risk that input becomes invalid after sanitization it’s better to store data raw. Also, when there are multiple output formats sanitizing might break something.