intertwingly

Jacques Distler: So I sat down and wrote a sanitization function for Instiki based, in part, on Sam’s Python code. ... It comes with unit tests, lots of unit tests.

At some point, I’ll likely backport this version to Python.  I have an unfinished branch of Venus where all sgmlib processing is replaced with html5lib, and sanitation is done after that.