You are reading a single comment by @Velocio and its replies.
Click here to read the full conversation.
-
Everything that anyone submits to the site... goes through this: https://github.com/microcosm-cc/bluemonday
The output of that, is the basis for what we store in the database.
Velocio
I've just worked out that I got this completely wrong. What happened was, of course, that I highlighted the text I wanted to quote, and that's when the non-breaking space was removed. D'oh. Is that what you mean by 'scrubbing of messages' or does that use, simply, an operating system function which retrieves highlighted text?
It should be such a vanishingly rare case, anyway, just thought it might affect others who use the nbsp, although I don't know if anyone else does. Arguably, it's not even necessary to be notified of repeated mentions that occur in quotes most of the time.
Needless to say, I don't have the faintest understanding how security risks work, either. :) I'll try to read up on that, as I find it interesting.