From de8027f68a877903b144bb1be30ddc0b218bbbb4 Mon Sep 17 00:00:00 2001
From: manetta <mail@manettaberends.nl>
Date: Tue, 22 Feb 2022 11:08:14 +0100
Subject: [PATCH] escape() and bleach.clean() are disabled... sanitizing does
 not render the html at all anymore...

---
 octomode.py            | 2 +-
 templates/pagedjs.html | 2 +-
 templates/preview.html | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/octomode.py b/octomode.py
index d88bf1a..f1c5c0b 100755
--- a/octomode.py
+++ b/octomode.py
@@ -80,7 +80,7 @@ def md_to_html(md_pad_content):
 	# html = bleach.clean(html)
 	
 	# Another built-in Flask way to sanitize
-	html = escape(html) 
+	# html = escape(html) 
 	html = Markup(html)
 	
 	return html
diff --git a/templates/pagedjs.html b/templates/pagedjs.html
index 526dd9b..1623a86 100644
--- a/templates/pagedjs.html
+++ b/templates/pagedjs.html
@@ -15,7 +15,7 @@
     </section>
 
     <section id="main">
-        <div id="wrapper">{{ pad_content | safe }}</div>
+        <div id="wrapper">{{ pad_content }}</div>
     </section>
 </body>
 </html>
diff --git a/templates/preview.html b/templates/preview.html
index 7568e2e..4e23ea4 100644
--- a/templates/preview.html
+++ b/templates/preview.html
@@ -13,7 +13,7 @@
     </section>
 
     <section id="main">
-        <div id="wrapper">{{ pad_content | safe }}</div>
+        <div id="wrapper">{{ pad_content }}</div>
     </section>
 </body>
 </html>