On 05/22/2011 11:00 AM, Christopher Allan Webber wrote:
> We're going to have to run things throuh lxml.html.clean once we add
> federation anyway to prevent XSS attacks. Anyway, curious of what
> people would prefer.
I'm 100% for markdown or a similar non-HTML solution. Scrubbing user HTML is
notoriously tricky, so I'd like to depend on it as little as possible. Also,
HTML markup typically requires more characters and looks uglier than
markdown-or-similar, which affects user experience IMOYMMVBRB.