Peter actually posted the correct answer. But I will try to elaborate:

彼得实际上发布了正确的答案。但我会尽量详细说明：

I guess you are familiar with the basic concept of ajax? Lets say you want to be able to create comments in an ajaxy fashion. In rails you may respond to POSTrequests in your CommentsControllervia:

我想你对ajax的基本概念很熟悉吧？假设您希望能够以 ajaxy 方式创建评论。在 Rails 中，您可以通过以下方式响应POST请求CommentsController：

def create
  @comment = Comment.new(params[:comment])
  respond_to do |format|
    render.js
  end
end

This means if an ajax request from the client (via jquery/javascript) is submitted to the CommentsControllerit will recognize the format (.js) and respond with the _create.js.erbpartial. The partial would then render the new comment with something like this:

这意味着如果来自客户端的 ajax 请求（通过 jquery/javascript）提交给CommentsController它，它将识别格式 ( .js) 并响应_create.js.erb部分。然后部分将使用以下内容呈现新评论：

$('.comments').append("<%=j render @comment %>");

Now to get to the j or escape_javascript method:Some eviluser may submit a comment containing (malicious) javascript which would be executed on your page unlessyou make use of the jmethod which

现在转到 j 或 escape_javascript 方法：一些邪恶的用户可能会提交包含（恶意）javascript 的评论，除非您使用该j方法，否则该评论将在您的页面上执行

Escapes carriage returns and single and double quotes for JavaScript segments.

转义 JavaScript 段的回车符和单引号和双引号。

and therefore prevents the execution of the code in the browser.

从而阻止代码在浏览器中的执行。

escape_javascript(javascript)

Escapes carriage returns and single and double quotes for JavaScript segments.

Also available through the alias j().

escape_javascript(javascript)

转义 JavaScript 段的回车符和单引号和双引号。

也可通过别名 j() 获得。

From the the rails docs.

来自rails 文档。