> Unless customized, Jinja2 is configured by Flask as follows: autoescaping is enabled for all templates ending in .html, .htm, .xml as well as .xhtml when using render_template().

If using flask pay special attention to this configuration.
In Django as far as I'm aware (after testing a bit), render/render_to_string always escapes the content.

Sign in to participate in the conversation
Social feed

This is a personal and private instance.