From b9a142ba481a17f17045a7c12eab891c0836eaff Mon Sep 17 00:00:00 2001
From: BordedDev <>
Date: Thu, 19 Jun 2025 09:30:33 +0200
Subject: [PATCH 1/2] Add missing HTML attributes to whitelist

---
 src/snek/system/template.py | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/src/snek/system/template.py b/src/snek/system/template.py
index 81306e9..236c805 100644
--- a/src/snek/system/template.py
+++ b/src/snek/system/template.py
@@ -151,6 +151,15 @@ SAFE_ATTRIBUTES = {
     "aria-hidden",
     "aria-label",
     "srcset",
+    "target",
+    "rel",
+    "referrerpolicy",
+    "controls",
+    "frameborder",
+    "allow",
+    "allowfullscreen",
+    "title",
+    "referrerpolicy",
 }
 
 
@@ -447,7 +456,7 @@ def embed_url(text):
 
                     description_element.append(
                         BeautifulSoup(
-                            f"<p class='page-description'>{page_description or "No description available."}</p>",
+                            f"<p class='page-description'>{page_description or 'No description available.'}</p>",
                             "html.parser",
                         )
                     )

From 40d11dc66a15cdc1f62d94fa0b8c4b61961515ea Mon Sep 17 00:00:00 2001
From: BordedDev <>
Date: Thu, 19 Jun 2025 09:33:05 +0200
Subject: [PATCH 2/2] Clean up

---
 src/snek/system/template.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/snek/system/template.py b/src/snek/system/template.py
index 236c805..ca8806f 100644
--- a/src/snek/system/template.py
+++ b/src/snek/system/template.py
@@ -158,7 +158,6 @@ SAFE_ATTRIBUTES = {
     "frameborder",
     "allow",
     "allowfullscreen",
-    "title",
     "referrerpolicy",
 }