Hello I am working on a web application that allows users to submit content in Markdown using the CommonMark spec. One concern I have run into is handling raw HTML that users include in their submissions. 😇 While some users embed safe elements like
or , others try injecting full HTML blocks, which poses security risks. 😇 I would like to allow Markdown input only; without allowing raw HTML to be rendered in the output. I am using the official CommonMark parser in Ja...
