From 7db66e0f6beca7908a612251394499001c991199 Mon Sep 17 00:00:00 2001
From: manetta <mail@manettaberends.nl>
Date: Tue, 22 Feb 2022 10:44:18 +0100
Subject: [PATCH] adding escape() and Markup()

---
 octomode.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/octomode.py b/octomode.py
index 09fb610..d88bf1a 100755
--- a/octomode.py
+++ b/octomode.py
@@ -5,7 +5,7 @@ from urllib.request import urlopen
 from urllib.parse import urlencode
 
 # To sanitize Flask input fields
-from flask import escape
+from markupsafe import Markup, escape
 
 # To sanitize Markdown input
 import markdown
@@ -79,9 +79,9 @@ def md_to_html(md_pad_content):
 	# Sanitize the Markdown
 	# html = bleach.clean(html)
 	
-	# Another way to Sanitize
-	from markupsafe import Markup
-	html = Markup(html) # Maybe not safe enough?
+	# Another built-in Flask way to sanitize
+	html = escape(html) 
+	html = Markup(html)
 	
 	return html