@sehacure reported an XSS vulnerability in enterprise.github.com. We addressed the issue by properly encoding the user-supplied input.