mastodon api: sanitize the bio HTML

This commit is contained in:
ensra 2018-08-21 10:53:53 +01:00
parent c1b8a6a73b
commit 175f0bebbc

View file

@ -36,7 +36,7 @@ defmodule Pleroma.Web.MastodonAPI.AccountView do
followers_count: user_info.follower_count,
following_count: user_info.following_count,
statuses_count: user_info.note_count,
note: user.bio || "",
note: HtmlSanitizeEx.basic_html(user.bio) || "",
url: user.ap_id,
avatar: image,
avatar_static: image,