* <>
* <>

It seems putting a '+' in there throws it. Maybe it's a markdown bug, or maybe the obfuscation markdown applies to email-links is being caught by the HTML sanitizer.

-- Jon

It's a markdown bug. For some reason, markdown doesn't recognize the email with a '+' as an email:

$ echo '<>' | markdown

htmlscrubber then (rightly) removes this unknown tag.

Filed in CPAN --Joey

But I've noticed some other Text::Markdown bugs that, even with htmlscrubber, produce ill-formed (X)HTML. (View the markdown source of this page.)


The htmlscrubber does not attempt to produce valid html from invalid. It attempts to prevent exploits in html. The tidy plugin can force html to valid. --Joey