-
Notifications
You must be signed in to change notification settings - Fork 201
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Sanitizer does not remove comment but converts it to plain html #470
Comments
What is your configuration? The HTML comment syntax used inside a script element does not create HTML comments but they become part of the script's text. |
What do you mean with configuration? I don't understand that question. The HTML is coming from an e-mail that is sent to us from a customer. We convert that e-mail to PDF but sanitize it before doing so. |
Sorry, I should have been more clear. By configuration I mean how have you initialized the |
This is the code --> Sorry for the Dutch comments. a minus sign means first remove everything and then add the rows below the sign |
I can't reproduce. AFAICT you are using HtmlSanitizer in the default configuration (default allowed tags, attributes etc). In that configuration, the |
Sorry for the late response, I got side tracked by other things so I have to look into this again. |
I use the latest version from nuget (not a beta version). When sanitizing the attached HTML it does not remove the comment that is between the javascript tags but for some reason it is converted to plain html.
comment.zip
The text was updated successfully, but these errors were encountered: