Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mstdn.degu.cl/users/daniel/statuses/111777034274973583">Daniel Hernández (daniel@mstdn.degu.cl)'s status on Thursday, 18-Jan-2024 22:01:56 JST</a><a href="https://mstdn.degu.cl/@daniel" title="daniel@mstdn.degu.cl"><img src="https://gnusocial.jp/avatar/230475-48-20250218062846.webp" width="48" height="48" alt="Daniel Hernández" style="position: absolute; left: 0; top: 0;">Daniel Hernández</a><div><a href="https://crag.social/@devnull/111773846251691565" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/116369" title="devnull@crag.social">Julian Lam</a></li><li><a href="https://gnusocial.jp/user/236503" title="stevenpemberton@mastodon.social">Steven Pemberton</a></li></ul></div></section><article><p><a href="https://crag.social/@devnull">@devnull</a> <a href="https://cosocial.ca/@evan">@evan</a> <a href="https://evanp.me/author/evanprodromou/">@evanprodromou</a> </p><p>Yes, sanitizing HTML elements will produce interoperability problems.</p><p>I would trust the input if it satisfies a given schema. Otherwise, I would try to fix unclosed elements to match the requirements for the object type content. At the last resource, instead of sanitizing elements, I would delete them and leave only the text. This idea is in the robustness principle: Be conservative in what you do, be liberal in what you accept from others. I also think this principle should be used with caution.</p><p>I feel a little disappointed on how we are facing problems that were resolved a long time ago. When Web content was understood as XML documents, each element had a specific syntax that could be validated. Elements were composable, and we were able to define declarative mappings to, for example, implement the downscale needed by the Mastodon UX to render a WordPress article. In this regard, I agree with most <a href="https://mastodon.social/@stevenpemberton">@stevenpemberton</a>'s arguments in his "The 100 years web" talk (<a href="https://www.youtube.com/watch?v=jl4fnY4BjEY" rel="nofollow noreferrer">https://www.youtube.com/watch?v=jl4fnY4BjEY</a>). But, this is probably a story for another thread.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2601609#notice-5157770">In conversation</a><time datetime="2024-01-18T22:01:56+09:00" title="Thursday, 18-Jan-2024 22:01:56 JST">Thursday, 18-Jan-2024 22:01:56 JST</time> <span>from <span><a href="https://mstdn.degu.cl/@daniel/111777034274973583" rel="external" title="Sent from mstdn.degu.cl via ActivityPub">mstdn.degu.cl</a></span></span><a href="https://mstdn.degu.cl/@daniel/111777034274973583">permalink</a><h4>Attachments</h4><ol><li><article><header><img height="128" width="128" src="https://gnusocial.jp/thumbnail/2131897?w=128&amp;h=128"><h5><a href="https://www.youtube.com/watch?v=jl4fnY4BjEY">The 100 year web</a></h5><div> from <span>Steven Pemberton</span></div></header><div>The keynote at the Balisage Conference on how to create a 100 year web. The slides are here: https://www.cwi.nl/~steven/Talks/2018/07-31-balisage/</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Daniel Hernández (daniel@mstdn.degu.cl)'s status on Thursday, 18-Jan-2024 22:01:56 JSTDaniel Hernández
in reply to
@devnull @evan @evanprodromou
Yes, sanitizing HTML elements will produce interoperability problems.
I would trust the input if it satisfies a given schema. Otherwise, I would try to fix unclosed elements to match the requirements for the object type content. At the last resource, instead of sanitizing elements, I would delete them and leave only the text. This idea is in the robustness principle: Be conservative in what you do, be liberal in what you accept from others. I also think this principle should be used with caution.
I feel a little disappointed on how we are facing problems that were resolved a long time ago. When Web content was understood as XML documents, each element had a specific syntax that could be validated. Elements were composable, and we were able to define declarative mappings to, for example, implement the downscale needed by the Mastodon UX to render a WordPress article. In this regard, I agree with most @stevenpemberton's arguments in his "The 100 years web" talk (https://www.youtube.com/watch?v=jl4fnY4BjEY). But, this is probably a story for another thread.
In conversationThursday, 18-Jan-2024 22:01:56 JST from mstdn.degu.clpermalink
Attachments
1. The 100 year web
  from Steven Pemberton
  The keynote at the Balisage Conference on how to create a 100 year web. The slides are here: https://www.cwi.nl/~steven/Talks/2018/07-31-balisage/

Public

Embed Notice

HTML Code

Corresponding Notice