Notices by :fednet: WetzWetz' OnlyFriends v3.0 🥵 🔞 (markuswet@federation.network)

@nblr@chaos.social Not trying to be that "ACKSHUALLYYY" guy, but this alarmism doesn't really help. For a more reasonable perspective, see @rysiek@mstdn.social 's post 👉 https://mstdn.social/@rysiek/113868633791655142

@jan@toot.io At least it's not an Excel spreadsheet, I guess? #ItsSomething 🙆🏻

@apps@toot.fedilab.app Since I've seen it in the wild a few toots ago, one of these edge effects would be stuff like "hijacking" hashtag links: A German news site's Mastodon account is doing that by creating Markdown links disguised as hashtags, i.e.
[ # hashtag ] ( link.to/their-tag-page )
Obviously, a) this could be abused by a malicious actor; b) has been a problem since the dawn of <a href="">. 🤷

(sorry for the excessive blurring. Don't wanna "dox" them, as it's technically not something malicious 🙃)

@apps@toot.fedilab.app OK, after a bit of further testing: This is a side effect of hashtags with Umlauts. They seem to create a hyperlink to the sender's instance.

Firefish somewhat exposes that "hijacking" attempts by displaying a small icon next to the link, as well as showing the link preview below the post.

Maybe something to just keep in mind, when you go forward with the Markdown support. 🙇