From f2096b36daebb8ea10d367f75b55de529df1fc99 Mon Sep 17 00:00:00 2001 From: Jeremy Zhang Date: Sat, 8 Apr 2017 15:45:03 -0700 Subject: [PATCH] Escape mentions for now --- titanembeds/blueprints/api/api.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/titanembeds/blueprints/api/api.py b/titanembeds/blueprints/api/api.py index 6ef8676..be7f203 100644 --- a/titanembeds/blueprints/api/api.py +++ b/titanembeds/blueprints/api/api.py @@ -98,6 +98,8 @@ def check_user_in_guild(guild_id): return 200 == discord_api.get_guild_member_nocache(guild_id, session['user_id'])['code'] and dbUser is not None def format_post_content(message): + message = message.replace("<", "\<") + message = message.replace(">", "\>") #escape mentions for now if (session['unauthenticated']): message = "**[{}#{}]** {}".format(session['username'], session['user_id'], message) else: