http://simonwillison.net/2010-10-25T13:32:00+00:00Simon Willison2010-10-25T13:32:00+00:002010-10-25T13:32:00+00:00https://simonwillison.net/2010/Oct/25/bleach/#atom-tag

<p><strong><a href="http://coffeeonthekeyboard.com/bleach-html-sanitizer-and-auto-linker-for-django-344/">Bleach, HTML sanitizer and auto-linker</a></strong></p> HTML sanitisation is notoriously difficult to do correctly, but Bleach (a Python library) looks like an excellent effort. It uses the html5lib parsing library to deal with potentially malformed HTML, uses a whitelist rather than a blacklist and has a neat feature for auto-linking URLs that is aware of the DOM (so it won’t try to auto-link a URL that is already wrapped in a link element). It was written by the Mozilla team for addons.mozilla.org and support.mozilla.org so it should be production ready. <p>Tags: <a href="https://simonwillison.net/tags/django">django</a>, <a href="https://simonwillison.net/tags/python">python</a>, <a href="https://simonwillison.net/tags/security">security</a>, <a href="https://simonwillison.net/tags/recovered">recovered</a>, <a href="https://simonwillison.net/tags/bleach">bleach</a></p>