Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
Clean HTML in feeds of "dangerous" tags (#645) #648
Just ran it against my code. The output looks fine.
That being said, YouTube videos, on account of them using iframes, are stripped out. I understand there are security concerns for having embeds and iframes in the feed, but is there any way to have it fall back to using some placeholder text so readers know there is something there? I'm using the ReStructured Text directive.
To address my concerns, maybe it would be sufficient to display a message at the beginning of the RSS post saying something along the lines of "Certain content from this post cannot be viewed via RSS. Please visit the original post to see the article in its entirety." One could append it when the length of the _clean_html input is longer than the length of the output...