Hacker News new | past | comments | ask | show | jobs | submit login

One nice trick that I use all the time is to convert html to md and back again in order to clean it.

Anyway, pandoc is great.

Would that be a good way to sanitise user input? Like removing script tags etc...

It’s usually not a good idea to “get creative” when it comes to security

Only if you trust Pandoc enough to expose it to unsanitised user input.

Applications are open for YC Winter 2020

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact