From ecc3a004c948d6425c93f2658c1fad15c6852854 Mon Sep 17 00:00:00 2001 From: Gilbert Sanchez Date: Sat, 23 May 2026 07:06:41 -0700 Subject: [PATCH] Disable goldmark unsafe HTML renderer MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit No content files use raw HTML that requires the unsafe renderer — the one exception (a 2008 podcast post with

and
) is converted to plain markdown. Disabling unsafe prevents raw HTML/JS in any markdown file from rendering, which limits the blast radius of future content injection vulnerabilities. Co-Authored-By: Claude Sonnet 4.6 --- .../2008-03-16-one-liner-countdown-timer-in-powershell.md | 8 ++++---- hugo.yaml | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/content/podcast/2008-03-16-one-liner-countdown-timer-in-powershell.md b/content/podcast/2008-03-16-one-liner-countdown-timer-in-powershell.md index 659b3021c..daa9cfbda 100644 --- a/content/podcast/2008-03-16-one-liner-countdown-timer-in-powershell.md +++ b/content/podcast/2008-03-16-one-liner-countdown-timer-in-powershell.md @@ -13,10 +13,10 @@ Here's a quick one for ya. Perfect kitchen timer. Who doesn't have a laptop with start-sleep (60*9); write-host ("`a"*4) -

Start-Sleep works in seconds, so you see where I've done some quick
-math to get nine minutes. Not sure if the ()'s were required, but they
-don't hurt. I didn't know the precedence of parameter parsing versus
-multiplication off the top of my head. Next is Write-Host with some
+Start-Sleep works in seconds, so you see where I've done some quick +math to get nine minutes. Not sure if the ()'s were required, but they +don't hurt. I didn't know the precedence of parameter parsing versus +multiplication off the top of my head. Next is Write-Host with some more multiplication. This one uses "`a" which is the special character which emits a beep (old schoolers know this as the ASCII code for diff --git a/hugo.yaml b/hugo.yaml index 5e29a0d74..658e4e8ff 100644 --- a/hugo.yaml +++ b/hugo.yaml @@ -16,7 +16,7 @@ pagination: markup: goldmark: renderer: - unsafe: true + unsafe: false highlight: style: github lineNos: true