Code Room
Code reviewHardcr-g571
Subject Ssti injection vulnerabilityLevel Senior–Staff~28 minCommon in Security interviewsIndustries Software development

Question

Review this Python email-template renderer (Flask + Jinja2).

What a strong answer looks like

Separate real bugs from style. Rank issues by severity, point at the root cause rather than the symptom, and suggest a concrete fix — specific and kind.

Talk through your review
Code to reviewpython
from jinja2 import Template @app.route('/preview', methods=['POST'])def preview_email():    subject = request.form['subject']    body_template = request.form['body']   # user-authored marketing template    rendered = Template('<h1>' + subject + '</h1>' + body_template).render(        name=current_user.name    )    return rendered
Run or narrate your approach, then ask the coach.