tempura is vulnerable to cross-site scripting (XSS) attacks. An attacker is able to inject malicious object
type inputs to the esc
function resulting in a potential cross-site scripting vulnerability due to the lack of sanitations inside the function.