#2910: [patch] Add extension support to Markdown filter
--------------------------------+-------------------------------------------
   Reporter:  [EMAIL PROTECTED]  |                Owner:  adrian                
     Status:  new               |            Component:  Contrib apps          
    Version:  SVN               |           Resolution:                        
   Keywords:  markup markdown   |                Stage:  Design decision needed
  Has_patch:  1                 |           Needs_docs:  0                     
Needs_tests:  0                 |   Needs_better_patch:  0                     
--------------------------------+-------------------------------------------
Comment (by Waylan Limberg <[EMAIL PROTECTED]>):

 Replying to [comment:6 [EMAIL PROTECTED]:
 > just silently ignoring the "safe" extension seems to be a possible
 source of security problems...
 
 I understand the concern, but allowing raw html in Markdown is generally
 considered a feature - which some will want/expect. Therefore, it should
 be left to each site developer to chose for him/herself whether markdown
 should use safe mode in that particular app according to the needs of that
 projects users. The above patch does that.
 
 Regarding the fact that safe mode is ignored in older versions, that is no
 different that the current behavior. If I recall correctly, it was not
 possible to call safe mode that easily, or at all, in older versions of
 Markdown. If anything, this adds one more reason to apply this patch.

-- 
Ticket URL: <http://code.djangoproject.com/ticket/2910#comment:7>
Django Code <http://code.djangoproject.com/>
The web framework for perfectionists with deadlines
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups 
"Django updates" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at 
http://groups.google.com/group/django-updates?hl=en
-~----------~----~----~----~------~----~------~--~---

Reply via email to