Thanks! I'll get this merged and tagged today.

Double encoding is a default in PHP itself.
Laravel since beginning chose to override the PHP security default and set it to false.
I would heavily recommend not changing double encode back to false.

If you choose to opt out of double encoding then imagine scenario like this:

Lets say you put the code below in input field and submit the form

<p>&lt;div&gt;&lt;/div&gt;</p>

once the form is submitted and you are returned back to the same input field you will NOT see the same thing you put there, but you will see this instead

<p><div></div></p>

Do you see the reason why double encoding is True by default in PHP? =)

I do agree @Swanty.
Just wanted to keep migration issues as low as possible. What do you think @tshafer?

We could always add a option to let the user enable and disable.

Something like adding this to the app service provider.

Form::doubleEncode();

or

Form::textarea($name, $value, $options)->doubleEncode();

Form::textarea($name, $value, $options)->disableDoubleEncode();

If it's possible to somehow get the value from
https://github.com/laravel/framework/blob/b6f7cfbc1efcc3866eef336b6cb4f9ac1b221c32/src/Illuminate/View/Compilers/BladeCompiler.php#L91
then you don't have to force a specific value for double encode.

Those who want double encoding can do so in the laravel framework itself and those who don't want can also do the same now.

Those who upgrade to 5.6 will have to go through upgrade guide either way and decide whether they wish to leave double encoding disabled or go with the defaults in Laravel and PHP.
I'm guessing developers by default would also assume that laravelcollective/html will be following the same standards as Laravel blade.

What do you think? =)

Could you update the version support for now? ☺️

New features can take time to discuss and implement.

Yea, lets get this out and come up with something.

@tshafer

Laravel since version 5.5 comes with new option \Blade::doubleEncode() that you can put in a service provider.
Now with Laravel 5.6 it has upgrade to be even better and it's now \Blade::withoutDoubleEncoding() and \Blade::withDoubleEncoding()

I think laravelcollective/html should just encode based on that and not create extra functionality that might just complicate and/or confuse developers in the long run.

Though one thing I might add is that conditional override for input fields like you mentioned "might" be a feature request in future that someone might ask.
I'm talking about Form::textarea($name, $value, $options)->disableDoubleEncode();
It's a pretty good idea as long as we follow the defaults/overrides in Laravel blade compiler.

Edit:
If there is such a feature added to conditionally disable double encoding for specific input fields then we should also stick to the Laravel naming withoutDoubleEncoding and withDoubleEncoding ?