From 7d7391416b38d854abe3346b97312c76be6ca637 Mon Sep 17 00:00:00 2001 From: Leigh Stillard Date: Tue, 24 Mar 2026 01:15:36 +0000 Subject: [PATCH 1/3] fix(security): sanitize inline HTML in markdown rendering MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Add rehype-sanitize to the markdown plugin chain to prevent XSS via malicious HTML in rendered content. The rehype-raw plugin was passing inline HTML through without sanitization, allowing script injection through tags like or