[GH-692] Fix formatting inside code block in issue created notification

[raghavaggarwal2308]

Summary

Fixed the improper formatting of special characters inside the code block of issue-created channel notifications.

What to test?

• Special characters are properly displayed inside the code block present in the description of the issue-created notification.

Screenshots

Earlier:

Now:

Ticket Link

Fixes #692

[mickmister]

LGTM, though I wonder if there is a more catch-all holistic approach

[raghavaggarwal2308]

@mickmister I explored other packages to sanitize the HTML but the one we are using right now was the best I could find. But this converts the special characters to their unicode value which are not formatted inside a code block, so we are replacing them again here. Please feel free to share your opinions if you have a better approach in mind.

[mickmister]

Hmm so it's the policy.Sanitize that's causing the issue. We really just want to use it to remove the <details> elements from the description, and not escape those characters.

As this comment microcosm-cc/bluemonday#39 (comment) mentions on a related issue for the bluemonday package, we can call html.UnescapeString from the result to make those characters go back to what we want them to be

[raghavaggarwal2308]

@mickmister Updated

[mickmister]

I think we need to reassign the value right?

Suggested change

	html.UnescapeString(result)
	result = html.UnescapeString(result)

[raghavaggarwal2308]

@mickmister Updated

[codecov-commenter]

Codecov Report

Attention: 2 lines in your changes are missing coverage. Please review.

Comparison is base (b8ac3c3) 15.78% compared to head (74db52f) 15.78%.
Report is 3 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff             @@
##           master     #697      +/-   ##
==========================================
- Coverage   15.78%   15.78%   -0.01%     
==========================================
  Files          15       15              
  Lines        5574     5575       +1     
==========================================
  Hits          880      880              
- Misses       4652     4653       +1     
  Partials       42       42              

Files	Coverage Δ
server/plugin/webhook.go	0.80% <0.00%> (-0.01%)	⬇️

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[mickmister]

Does the bluemonday policy remove things other than the <details> tags? I'm thinking it may remove things like <script> because the tool is meant to sanitize the HTML. We would not want it to remove anything but the <details> tags in our case.

[raghavaggarwal2308]

@mickmister Yes, it's removing the HTML tags in the string. For some tags, it's just removing the tags and for some, it's removing the tags along with the text inside.

[mickmister]

@raghavaggarwal2308 Since the main thing we want to sanitize is <details>, we could just only run the sanitize when there exists a <details> tag in the post body. It's not common to have those in the post body, but when it shows up it's usually spammy which is why we remove them

[raghavaggarwal2308]

@raghavaggarwal2308 Since the main thing we want to sanitize is <details>, we could just only run the sanitize when there exists a <details> tag in the post body. It's not common to have those in the post body, but when it shows up it's usually spammy which is why we remove them

@mickmister If we do so and there are other tags along with the details tag, then they will be removed as well. Is that fine?

[mickmister]

@raghavaggarwal2308 Yes that's fine 👍

[raghavaggarwal2308]

@mickmister Added logic to sanitize description conditionally.