From cf0cb7b7807df255e6f8ac7c92f8bd650d41e8c0 Mon Sep 17 00:00:00 2001
From: Christine Dodrill <me@christine.website>
Date: Wed, 14 Dec 2016 18:23:07 -0800
Subject: [PATCH] frontend/Utils: better unescape HTML encoded strings

---
 frontend/src/Utils.js | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/frontend/src/Utils.js b/frontend/src/Utils.js
index a27aa65..6068ffc 100644
--- a/frontend/src/Utils.js
+++ b/frontend/src/Utils.js
@@ -1,9 +1,14 @@
 // Module App.BlogEntry
 
+function htmlDecode(input) {
+  var doc = new DOMParser().parseFromString(input, "text/html");
+  return doc.documentElement.textContent;
+}
+
 exports.mdify = function(id) {
   var converter = new showdown.Converter()
   elem = document.getElementById(id);
   md = elem.innerHTML;
-  elem.innerHTML = unescape(converter.makeHtml(md));
+  elem.innerHTML = htmlDecode(converter.makeHtml(md));
   return "done :)";
 }