diff options
| author | ensra <ensra@users.noreply.github.com> | 2018-08-21 10:53:53 +0100 |
|---|---|---|
| committer | ensra <ensra@users.noreply.github.com> | 2018-08-21 10:53:53 +0100 |
| commit | 175f0bebbc8ee420082b10b00e49e490f65d4c5f (patch) | |
| tree | c858b78ab11a7e69462b69091cfcf83775b70d73 /lib | |
| parent | c1b8a6a73bfd5f30d5a290b9700ed4d41064ce77 (diff) | |
| download | pleroma-175f0bebbc8ee420082b10b00e49e490f65d4c5f.tar.gz | |
mastodon api: sanitize the bio HTML
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/pleroma/web/mastodon_api/views/account_view.ex | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/pleroma/web/mastodon_api/views/account_view.ex b/lib/pleroma/web/mastodon_api/views/account_view.ex index cc5261616..d9edcae7f 100644 --- a/lib/pleroma/web/mastodon_api/views/account_view.ex +++ b/lib/pleroma/web/mastodon_api/views/account_view.ex @@ -36,7 +36,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountView do followers_count: user_info.follower_count, following_count: user_info.following_count, statuses_count: user_info.note_count, - note: user.bio || "", + note: HtmlSanitizeEx.basic_html(user.bio) || "", url: user.ap_id, avatar: image, avatar_static: image, |