From d985a991a5be30fa45c8208d8941bf9ff72af149 Mon Sep 17 00:00:00 2001
From: oppiliappan <me@oppi.li>
Date: Sat, 16 Aug 2025 22:42:39 +0100
Subject: [PATCH] appview: unify sanitization for `markdown` filter
Change-Id: zqrmrxxvryluqqrkoszulxouqxxsrwxs

Signed-off-by: oppiliappan <me@oppi.li>
---
 appview/pages/funcmap.go | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/appview/pages/funcmap.go b/appview/pages/funcmap.go
index a0926660..f719a11b 100644
--- a/appview/pages/funcmap.go
+++ b/appview/pages/funcmap.go
@@ -19,7 +19,6 @@ import (
 
 	"github.com/dustin/go-humanize"
 	"github.com/go-enry/go-enry/v2"
-	"github.com/microcosm-cc/bluemonday"
 	"tangled.sh/tangled.sh/core/appview/filetree"
 	"tangled.sh/tangled.sh/core/appview/pages/markup"
 )
@@ -209,8 +208,10 @@ func (p *Pages) funcMap() template.FuncMap {
 		},
 
 		"markdown": func(text string) template.HTML {
-			rctx := &markup.RenderContext{RendererType: markup.RendererTypeDefault}
-			return template.HTML(bluemonday.UGCPolicy().Sanitize(rctx.RenderMarkdown(text)))
+			p.rctx.RendererType = markup.RendererTypeDefault
+			htmlString := p.rctx.RenderMarkdown(text)
+			sanitized := p.rctx.SanitizeDefault(htmlString)
+			return template.HTML(sanitized)
 		},
 		"isNil": func(t any) bool {
 			// returns false for other "zero" values
-- 
2.43.0