|
|
|
|
|
|
by jimpick
3691 days ago
|
|
|
My approach was to just pump the entire comment through the "markdown-it" markdown processor, which promises to emit safe HTML. It's a popular project, so I'm banking on the fact that they go a good job of sanitizing in their pipeline. |
|
|