/api/v1/accounts/verify_credentials returns HTML escaped symbols where it shouldn't
Environment
- Installation type:
From source
- Pleroma version (could be found in the "Version" tab of settings in Pleroma-FE):
2.0.2
and2.0.50-44-g38f796a5-develop
- Elixir version (
elixir -v
for from source installations, N/A for OTP):Elixir 1.10.2 (compiled with Erlang/OTP 21)
- Operating system:
Linux
- PostgreSQL version (
postgres -V
):12.0
Bug description
According to Mastodon API documentation, "source" object added in verify_credentials must be plaintext rather than HTML.
Reproduce steps:
- Enter some apostrophes, quotes, ampersands, < and > into bio.
- Save.
- Update page and look into raw JSON returned by API endpoint.
Pleroma versions tested: Instances: expired.mentality.rip, blob.cat