From 1c13258ac005b62dc171df26b6bc62c375ef2ee2 Mon Sep 17 00:00:00 2001
From: Nyx <me@everypizza.im>
Date: Sun, 23 Mar 2025 00:41:45 -0500
Subject: [PATCH] we trusted the user too much

---
 utils/app.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/utils/app.py b/utils/app.py
index 41032a9..2629d22 100644
--- a/utils/app.py
+++ b/utils/app.py
@@ -5,7 +5,7 @@ import generate
 
 def sanitize_html(html):
     # Allow only a limited set of tags and attributes
-    allowed_tags = ['a', 'b', 'i', 'em', 'strong']
+    allowed_tags = []
     allowed_attributes = {'a': ['href']}
     return bleach.clean(html, tags=allowed_tags, attributes=allowed_attributes)
 
@@ -55,4 +55,4 @@ def case():
     return render_template('casing.j2')
 
 if __name__ == '__main__':
-    app.run(debug=True)
\ No newline at end of file
+    app.run(debug=True)