diff --git a/.phan/config.php b/.phan/config.php
index d969b4a19..b67f1b245 100644
--- a/.phan/config.php
+++ b/.phan/config.php
@@ -29,8 +29,6 @@
 		'PhanNonClassMethodCall',
 		'PhanImpossibleTypeComparison',
 		'PhanRedundantConditionInLoop',
-		// Must work on fixing this and unsuppress it 1 error that was unable to fix and single line suppressing didn't work
-		'SecurityCheck-XSS',
 	]
 );
 
diff --git a/includes/Helpers/ManageWikiDeletedWikiPager.php b/includes/Helpers/ManageWikiDeletedWikiPager.php
index 73bd360b4..7ef420895 100644
--- a/includes/Helpers/ManageWikiDeletedWikiPager.php
+++ b/includes/Helpers/ManageWikiDeletedWikiPager.php
@@ -35,24 +35,34 @@ public function getFieldNames() {
 		return $headers;
 	}
 
+	/**
+	 * Safely HTML-escape $value
+	 *
+	 * @param string $value
+	 * @return string
+	 */
+	private static function escape( $value ) {
+		return htmlspecialchars( $value, ENT_QUOTES );
+	}
+
 	public function formatValue( $name, $value ) {
 		$row = $this->mCurrentRow;
 
 		switch ( $name ) {
 			case 'wiki_dbname':
-				$formatted = $row->wiki_dbname;
+				$formatted = $this->escape( $row->wiki_dbname );
 				break;
 			case 'wiki_creation':
-				$formatted = wfTimestamp( TS_RFC2822, (int)$row->wiki_creation );
+				$formatted = $this->escape( wfTimestamp( TS_RFC2822, (int)$row->wiki_creation ) );
 				break;
 			case 'wiki_deleted_timestamp':
-				$formatted = wfTimestamp( TS_RFC2822, (int)$row->wiki_deleted_timestamp );
+				$formatted = $this->escape( wfTimestamp( TS_RFC2822, (int)$row->wiki_deleted_timestamp ) );
 				break;
 			case 'wiki_deleted':
 				$formatted = Linker::makeExternalLink( SpecialPage::getTitleFor( 'ManageWiki' )->getFullURL() . '/core/' . $row->wiki_dbname, $this->msg( 'managewiki-label-goto' )->text() );
 				break;
 			default:
-				$formatted = "Unable to format $name";
+				$formatted = $this->escape( "Unable to format $name" );
 				break;
 		}
 		return $formatted;