Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

data<text removes <text part instead of sanitizing to data&lt;text #464

Closed
sg2707 opened this issue Sep 7, 2023 · 1 comment
Closed

data<text removes <text part instead of sanitizing to data&lt;text #464

sg2707 opened this issue Sep 7, 2023 · 1 comment

Comments

@sg2707
Copy link

sg2707 commented Sep 7, 2023
edited
Loading

Steps to reproduce:

Sanitise the following text
data<text

Actual output:
data

expected:
data&lt;text

image
@mganss
Copy link
Owner

mganss commented Sep 7, 2023

This is by design, see #91 and #126. See https://github.com/mganss/HtmlSanitizer/wiki/Examples#ex4-encode-non-html-before-sanitizing on how to deal with non-HTML input.

@mganss mganss closed this as completed Sep 7, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mganss @sg2707