Comment 5 for bug 1958539
Revision history for this message
| Victor Stinner (vstinner) wrote Re: Consider deprecating/removing clean_html() in favor of bleach? | #5 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0f7b58d
(Get the code!)
> bleach is significantly slower than lxml
Well, make your choice between correctness (security) and performance :-D Today, I'm not aware of any open vulnerability in lxml, they are fixed quickly. But by design, bleach looks safer.