From 538ea8471a79f5b51d238331ca8c2d53a7353c88 Mon Sep 17 00:00:00 2001
From: Rob Richardson <robrich@robrich.org>
Date: Wed, 16 Apr 2014 06:57:57 -0700
Subject: [PATCH] Patch XSS hole in chat example

---
 examples/chat/views/index.jade | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/examples/chat/views/index.jade b/examples/chat/views/index.jade
index 0633d8b..f5df3b8 100644
--- a/examples/chat/views/index.jade
+++ b/examples/chat/views/index.jade
@@ -38,7 +38,7 @@ html
       });
 
       function message (from, msg) {
-        $('#lines').append($('<p>').append($('<b>').text(from), msg));
+        $('#lines').append($('<p>').append($('<b>').text(from), $('<span>').text(msg)));
       }
 
       // dom manipulation