From 3a01ef11ff7ea200df5b83a686babb0425eb5a7c Mon Sep 17 00:00:00 2001
From: Benjamin Freeman <bfreema1@mail.sfsu.edu>
Date: Fri, 28 Aug 2020 18:27:11 -0700
Subject: [PATCH] xss activity

---
 main.py          | 2 +-
 requirements.txt | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/main.py b/main.py
index fd03988..4d3b187 100644
--- a/main.py
+++ b/main.py
@@ -31,7 +31,7 @@ def home():
 <div class="message">
 {}
 </div>
-""".format(m.content)
+""".format(m.content.replace('<', '&lt;').replace('>', '&gt;'))
 
     return body 
 
diff --git a/requirements.txt b/requirements.txt
index b4ca511..6654729 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -2,6 +2,6 @@ click==6.7
 Flask==1.0.2
 itsdangerous==0.24
 Jinja2==2.10
-MarkupSafe==1.0
+MarkupSafe
 peewee==3.3.4
 Werkzeug==0.14.1