In sanitize(), delete unsupported HTML tags instead of showing them.

This commit is contained in:
default 2023-06-13 19:00:26 +02:00
parent 5654960161
commit b5f63b63fa

View file

@ -224,14 +224,10 @@ xs_str *sanitize(const char *content)
s2 = xs_fmt("<%s%s%s%s>", s2 = xs_fmt("<%s%s%s%s>",
v[1] == '/' ? "/" : "", tag, xs_list_len(el) ? " " : "", s3); v[1] == '/' ? "/" : "", tag, xs_list_len(el) ? " " : "", s3);
}
else {
/* bad tag: escape it */
s2 = xs_replace(v, "<", "&lt;");
}
s = xs_str_cat(s, s2); s = xs_str_cat(s, s2);
} }
}
else { else {
/* non-tag */ /* non-tag */
s = xs_str_cat(s, v); s = xs_str_cat(s, v);