From 72f6fa65fd4fe5ff9788a733ed3f53b18f9242ae Mon Sep 17 00:00:00 2001
From: Vincent Ambo <tazjin@gmail.com>
Date: Mon, 16 Apr 2018 00:25:29 +0200
Subject: [PATCH] fix(templates): Mark pre-escaped variables as 'safe'

---
 templates/search.html | 2 +-
 templates/thread.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/templates/search.html b/templates/search.html
index 2254c97f0..35193fb61 100644
--- a/templates/search.html
+++ b/templates/search.html
@@ -34,7 +34,7 @@
             {% for result in results -%}
             <a href="/thread/{{ result.thread_id }}#post-{{ result.post_id }}" class="list-group-item list-group-item-action flex-column align-items-start">
               <div class="d-flex w-100 justify-content-between">
-                <p class="mb-1">{{ result.headline }}</p>
+                <p class="mb-1">{{ result.headline | safe }}</p>
                 <small class="float-right text-muted"><i>(Posted in '{{ result.title }}' by {{ result.author }})</i></small>
               </div>
             </a>
diff --git a/templates/thread.html b/templates/thread.html
index 826046ce1..7c0f852f4 100644
--- a/templates/thread.html
+++ b/templates/thread.html
@@ -33,7 +33,7 @@
             <strong>{{ post.author_name }}</strong>
           </div>
 
-          <div class="align-self-stretch">{{ post.body }}</div>
+          <div class="align-self-stretch">{{ post.body | safe }}</div>
 
           <div class="d-inline-flex flex-column align-items-end ml-auto">
             <a href="/thread/{{ id }}#post-{{ post.id }}" class="ml-auto">