[bugfix] Fix HTML escaping in instance title (#607)

* move caption sanitization -> sanitize.go * use sanitizeplaintext rather than removehtml * rename sanitizecaption to sanitizeplaintext * avoid removing html twice from statuses * unexport remoteHTML it's no longer used outside the text package so this makes it less confusing * test instance PATCH
author: tobi <31960611+tsmethurst@users.noreply.github.com> 2022-05-26 11:37:13 +0200
committer: GitHub <noreply@github.com> 2022-05-26 11:37:13 +0200
commit: 5668ce1ec701ed12eb099020e8a322de08e6f810 (patch)
tree: f056890ae94f464176750be17b06292c5b9160d7 /internal/processing/status/create.go
parent: [security] Set SameSite to `strict` instead of browser default (#606) (diff)
download: gotosocial-5668ce1ec701ed12eb099020e8a322de08e6f810.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/internal/processing/status/create.go b/internal/processing/status/create.go
index add8a5bc6..e5f6e9647 100644
--- a/internal/processing/status/create.go
+++ b/internal/processing/status/create.go
@@ -49,7 +49,7 @@ func (p *processor) Create(ctx context.Context, account *gtsmodel.Account, appli
 		Local:                    true,
 		AccountID:                account.ID,
 		AccountURI:               account.URI,
-		ContentWarning:           text.SanitizeCaption(form.SpoilerText),
+		ContentWarning:           text.SanitizePlaintext(form.SpoilerText),
 		ActivityStreamsType:      ap.ObjectNote,
 		Sensitive:                form.Sensitive,
 		Language:                 form.Language,
author	tobi <31960611+tsmethurst@users.noreply.github.com>	2022-05-26 11:37:13 +0200
committer	GitHub <noreply@github.com>	2022-05-26 11:37:13 +0200
commit	5668ce1ec701ed12eb099020e8a322de08e6f810 (patch)
tree	f056890ae94f464176750be17b06292c5b9160d7 /internal/processing/status/create.go
parent	[security] Set SameSite to `strict` instead of browser default (#606) (diff)
download	gotosocial-5668ce1ec701ed12eb099020e8a322de08e6f810.tar.xz