For a place like MDN, this really isn't a problem.
> If you can drop to HTML, you have to have a sanitiser process. So then you're dropping to some-unknown-subset of HTML if the process is automatic - or you've failed to reduce the amount of effort being put on the editors if it's a human one.
I presume Kuma had - and Yari will have, if it doesn't already - some way to prevent unsafe injection and other dangerous things.
This isn't to say that the issue doesn't exist. Instead, I would expect it to be the exception rather than the rule. After all, Markdown and its derivatives owe their existence to this very phenomenon.
For a place like MDN, this really isn't a problem.
> If you can drop to HTML, you have to have a sanitiser process. So then you're dropping to some-unknown-subset of HTML if the process is automatic - or you've failed to reduce the amount of effort being put on the editors if it's a human one.
I presume Kuma had - and Yari will have, if it doesn't already - some way to prevent unsafe injection and other dangerous things.
This isn't to say that the issue doesn't exist. Instead, I would expect it to be the exception rather than the rule. After all, Markdown and its derivatives owe their existence to this very phenomenon.
The language of last resort, if you will.