so basically, i’m making my own tiny frontend for fun and learning nuxt stuff, and posts are plain html, but the wasteof api makes it xss proof so thats cool :)
you actually can post actual html, jeffalo’s be removes like 99% of tags and attributes though
both do
if it didn’t, we’d’ve had both of the following:
xss attack
funny cohost esque css crimes
afaik the frontend may just use v-html
since the backend does the purifying afaik