Rebake from latest cookie. Updated ruff configs correctly warned about a bunch of places we were unsafely using mark_safe, which I've updated in this PR to use format_html instead where appropriate.
Lots of other ruff warnings about raw SQL calls and potential SQL injection which are currently beyond the scope of this PR to address, but I've tried to make sure they at least have TODO comments for later revisitation.
Rebake from latest cookie. Updated
ruffconfigs correctly warned about a bunch of places we were unsafely usingmark_safe, which I've updated in this PR to useformat_htmlinstead where appropriate.Lots of other ruff warnings about raw SQL calls and potential SQL injection which are currently beyond the scope of this PR to address, but I've tried to make sure they at least have TODO comments for later revisitation.