ValidateFormat: do not html.Unescape and trim spaces

badoux / checkmail

Golang package for email validation

MIT License

710 stars 92 forks source link

Closed dolmen closed 7 years ago

dolmen commented 7 years ago

Do not html.Unescape and trim spaces because:

This should not be the job of this library and is not an expectation of users of the function
This has the risk of allowing nasty encodings and dirty exploits

This PR contains also a few other small commits. Tell me if you prefer I separate them.

badoux commented 7 years ago

Thanks for your contribution