Merge pull request #68 from w3c/zcorpan/escape-quote

HTML-escape " for {{GET[foo]}}
web-platform-tests · Nov 19, 2015 · 33ec0bb · 33ec0bb
2 parents b6b082f + 7d4222f
commit 33ec0bb
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/wptserve/pipes.py b/wptserve/pipes.py
@@ -419,7 +419,7 @@ def config_replacement(match):
 
         #Should possibly support escaping for other contexts e.g. script
         #TODO: read the encoding of the response
-        return escape(unicode(value)).encode("utf-8")
+        return escape(unicode(value), quote=True).encode("utf-8")
 
     template_regexp = re.compile(r"{{([^}]*)}}")
     new_content, count = template_regexp.subn(config_replacement, content)