vassili/seitime-frappe
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

chore: improve misleading docstring

Browse source
This commit is contained in:
Sagar Vora 2026-01-23 14:48:10 +05:30
parent 61bc172d95
commit 84359c8d49
1 changed files with 1 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
frappe/utils/html_utils.py
View file

@ -136,8 +136,7 @@ def clean_script_and_style(html):
def sanitize_html(html, linkify=False, always_sanitize=False):
"""
Sanitize HTML tags, attributes and style to prevent XSS attacks
Based on nh3 clean (formerly bleach clean), bleach whitelist and html5lib's
Sanitizer defaults
Based on nh3 clean, bleach whitelist and html5lib's Sanitizer defaults
Does not sanitize JSON unless explicitly specified, as it could lead to future problems
"""