From 2389ab30f84d752d2f867eb8109f3921a764a76a Mon Sep 17 00:00:00 2001
From: J Rao <jrao1@live.com>
Date: Mon, 6 Mar 2023 21:28:09 +0800
Subject: [PATCH] sanitize label value

---
 src/routes/api/clipper.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/routes/api/clipper.js b/src/routes/api/clipper.js
index e1500c2c0..d792ff38a 100644
--- a/src/routes/api/clipper.js
+++ b/src/routes/api/clipper.js
@@ -103,8 +103,8 @@ function createNote(req) {
     
     if (labels) {
         for (const labelName in labels) {
-            console.log('set label ' + labelName + ' on the new note!');
-            note.setLabel(labelName, labels[labelName]);
+            const labelValue = htmlSanitizer.sanitize(labels[labelName]);
+            note.setLabel(labelName, labelValue);
         }
     }