From f062fbcd052950988005e2b4c0a64c54b45e7933 Mon Sep 17 00:00:00 2001
From: "beetles-ai[bot]" <221859081+beetles-ai[bot]@users.noreply.github.com>
Date: Sat, 4 Oct 2025 14:05:48 +0000
Subject: [PATCH] Patch for controllers/user.py

---
 controllers/user.py | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/controllers/user.py b/controllers/user.py
index 8748a60..a9b0573 100644
--- a/controllers/user.py
+++ b/controllers/user.py
@@ -931,8 +931,10 @@ def create_resume_pdf(resume_data, company_name):
     }
 
     # Render and create PDF
-    template = Template(html_template)
-    html_content = template.render(**template_data)
+import bleach
+template = Template(html_template)
+sanitized_data = {k: bleach.clean(v) if isinstance(v, str) else v for k, v in template_data.items()}
+html_content = template.render(**sanitized_data)
     
     with open(temp_file.name, "w+b") as pdf_file:
         pisa_status = pisa.CreatePDF(