[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Social-mediagoblin] description / comments markup type

From: Aaron Williamson
Subject: Re: [Social-mediagoblin] description / comments markup type
Date: Sun, 22 May 2011 21:24:37 -0400
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv: Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10

On 05/22/2011 11:00 AM, Christopher Allan Webber wrote:
> We're going to have to run things throuh lxml.html.clean once we add
> federation anyway to prevent XSS attacks.  Anyway, curious of what
> people would prefer.

I'm 100% for markdown or a similar non-HTML solution. Scrubbing user HTML is
notoriously tricky, so I'd like to depend on it as little as possible. Also,
HTML markup typically requires more characters and looks uglier than
markdown-or-similar, which affects user experience IMOYMMVBRB.


reply via email to

[Prev in Thread] Current Thread [Next in Thread]